Merge branch 'master' of salsa.debian.org:security-tracker-team/security-tracker

author: Moritz Muehlenhoff <jmm@debian.org> 2020-11-25 17:04:22 +0100
committer: Moritz Muehlenhoff <jmm@debian.org> 2020-11-25 17:04:22 +0100
commit: 050e624bc7e41d8aa493cef869ca4a0ea033d61c (patch)
tree: adda69a633fe76881f789c8c9d3b28fd63717540 /data
parent: c2743a467348cc96700f566ff40d6681b0552b7f (diff)
parent: f6bfc4d17c06b82b977c2eb21dd11f7057c9523f (diff)
2 files changed, 4 insertions, 0 deletions
diff --git a/data/CVE/list b/data/CVE/list
index 384b87203c..aebf0a61f7 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -303,6 +303,7 @@ CVE-2020-28936
 CVE-2020-28935
 	RESERVED
 	- unbound <unfixed>
+	[stretch] - unbound <end-of-life> (DSA 4694-1)
 	NOTE: https://github.com/NLnetLabs/unbound/issues/303
 	NOTE: Fixed by: https://github.com/NLnetLabs/unbound/commit/ad387832979b6ce4c93f64fe706301cd7d034e87 (release-1.13.0rc1)
 CVE-2019-20933 (InfluxDB before 1.7.6 has an authentication bypass vulnerability in th ...)
diff --git a/data/dla-needed.txt b/data/dla-needed.txt
index 68430d94b8..81661de890 100644
--- a/data/dla-needed.txt
+++ b/data/dla-needed.txt
@@ -168,6 +168,9 @@ snapd (Brian May)
 --
 spice-vdagent (Abhijith PA)
 --
+spip
+  NOTE: Low priority for us. sec team did DSA-4798-1 (abhijith)
+--
 vips (Adrian Bunk)
 --
 webcit (Markus Koschany)
author	Moritz Muehlenhoff <jmm@debian.org>	2020-11-25 17:04:22 +0100
committer	Moritz Muehlenhoff <jmm@debian.org>	2020-11-25 17:04:22 +0100
commit	050e624bc7e41d8aa493cef869ca4a0ea033d61c (patch)
tree	adda69a633fe76881f789c8c9d3b28fd63717540 /data
parent	c2743a467348cc96700f566ff40d6681b0552b7f (diff)
parent	f6bfc4d17c06b82b977c2eb21dd11f7057c9523f (diff)