diff options
author | Salvatore Bonaccorso <carnil@debian.org> | 2020-05-26 19:43:18 +0200 |
---|---|---|
committer | Salvatore Bonaccorso <carnil@debian.org> | 2020-05-26 19:43:18 +0200 |
commit | ec8bca1e5dfe03181ca28ac0b2700407ffbaca5e (patch) | |
tree | 5343227388e9adabe0b89d5e608c827c8eaaf592 | |
parent | 6c2440e30399b7dd9299fe8fec5a6bba62db097b (diff) |
Associate CVE-2018-18405 with jquery but mark it as unimporant
The validity of the CVE is unclear anyway and several third parties have
raised the issue as beeing just a spam entry.
-rw-r--r-- | data/CVE/list | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/data/CVE/list b/data/CVE/list index 4b9e3e9d13..2917b5f902 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -94024,7 +94024,7 @@ CVE-2018-18407 (A heap-based buffer over-read was discovered in the tcpreplay-ed CVE-2018-18406 (An issue was discovered in Tufin SecureTrack 18.1 with TufinOS 2.16 bu ...) NOT-FOR-US: Tufin SecureTrack CVE-2018-18405 (jQuery v2.2.2 allows XSS via a crafted onerror attribute of an IMG ele ...) - TODO: to be checked, unclear validity of the CVE + - jquery <removed> (unimportant) CVE-2018-18404 RESERVED CVE-2018-18403 |