diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2020-07-31 16:16:07 +0200 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2020-07-31 16:16:07 +0200 |
| commit | 1cb31c58f8f43c7a30cd62b79423d8d46c16a699 (patch) | |
| tree | e2b91b21c68876dab8d1c1cedb06f27405845ea4 /data/CVE | |
| parent | e917d1eb017c368e2ed5dfe997df0ec58bd7be94 (diff) | |
Track nginx fixes in 10.5
Diffstat (limited to 'data/CVE')
| -rw-r--r-- | data/CVE/list | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/data/CVE/list b/data/CVE/list index 0942f58f2e..8116c094c6 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -24843,7 +24843,7 @@ CVE-2019-20374 (A mutation cross-site scripting (XSS) issue in Typora through 0. NOT-FOR-US: Typora CVE-2019-20372 (NGINX before 1.17.7, with certain error_page configurations, allows HT ...) - nginx 1.16.1-3 (low; bug #948579) - [buster] - nginx <no-dsa> (Minor issue) + [buster] - nginx 1.14.2-2+deb10u2 [stretch] - nginx 1.10.3-1+deb9u4 [jessie] - nginx <no-dsa> (Minor issue) NOTE: https://bertjwregeer.keybase.pub/2019-12-10%20-%20error_page%20request%20smuggling.pdf |