diff options
author | Salvatore Bonaccorso <carnil@debian.org> | 2020-12-17 07:48:45 +0100 |
---|---|---|
committer | Salvatore Bonaccorso <carnil@debian.org> | 2020-12-17 07:48:45 +0100 |
commit | e55c1aeae95c52eb5ac0c2fb21c75160f64df699 (patch) | |
tree | 75af38eaf468b6e3338a993c9c9abf04d6267476 /data | |
parent | 68cd3fc17653c612e6d29d5c3aaae752c53bc89b (diff) |
Add CVE-2020-35381/golang-github-buger-jsonparser
Diffstat (limited to 'data')
-rw-r--r-- | data/CVE/list | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/data/CVE/list b/data/CVE/list index d329dc1594..37ade4c7b1 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -204,7 +204,8 @@ CVE-2020-35383 CVE-2020-35382 (SQL Injection in Classbooking before 2.4.1 via the username field of a ...) NOT-FOR-US: Classbooking CVE-2020-35381 (jsonparser 1.0.0 allows attackers to cause a denial of service (panic: ...) - TODO: check + - golang-github-buger-jsonparser <unfixed> + NOTE: https://github.com/buger/jsonparser/issues/219 CVE-2020-35380 (GJSON before 1.6.4 allows attackers to cause a denial of service via c ...) TODO: check CVE-2020-35379 |