diff options
author | Salvatore Bonaccorso <carnil@debian.org> | 2020-07-31 17:12:42 +0200 |
---|---|---|
committer | Salvatore Bonaccorso <carnil@debian.org> | 2020-07-31 17:12:42 +0200 |
commit | 930d09ff0fbdec24203280bbdf1e5d1ccac744a8 (patch) | |
tree | 8edea710d20f5aa407b748fcf7f45608d1d1a1c2 /data | |
parent | dd6ed6024ae556bc5d11e995db8e4d2e72b59409 (diff) |
Track fixes for fwupd in 10.5
Diffstat (limited to 'data')
-rw-r--r-- | data/CVE/list | 2 | ||||
-rw-r--r-- | data/next-point-update.txt | 2 |
2 files changed, 1 insertions, 3 deletions
diff --git a/data/CVE/list b/data/CVE/list index 07df1d3965..8af26837f7 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -15053,7 +15053,7 @@ CVE-2020-10759 [Possible bypass in signature verification] RESERVED {DLA-2274-1} - fwupd 1.3.10-1 (bug #962517) - [buster] - fwupd <no-dsa> (Will be fixed via point release) + [buster] - fwupd 1.2.13-1 - libjcat 0.1.3-1 NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1844316 NOTE: https://github.com/justinsteven/advisories/blob/master/2020_fwupd_dangling_s3_bucket_and_CVE-2020-10759_signature_verification_bypass.md diff --git a/data/next-point-update.txt b/data/next-point-update.txt index f2c3ef4092..ff063756a5 100644 --- a/data/next-point-update.txt +++ b/data/next-point-update.txt @@ -1,5 +1,3 @@ -CVE-2020-10759 - [buster] - fwupd 1.2.13-1 CVE-2020-7040 [buster] - storebackup 3.2.1-2~deb10u1 CVE-2020-9548 |