From a549cd0170236df52070c6d07a5704634dc386f4 Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Sun, 21 Jun 2020 20:54:38 +0200
Subject: CVE-2020-14954/{mutt,neomutt} assigned for MITM response issue

---
 data/CVE/list | 4 +---
 data/DSA/list | 2 +-
 2 files changed, 2 insertions(+), 4 deletions(-)

(limited to 'data')

diff --git a/data/CVE/list b/data/CVE/list
index af3b5bce4d..6b59af3b48 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1275,10 +1275,8 @@ CVE-2016-11062 (An issue was discovered in Mattermost Server before 3.5.1. E-mai
 	NOT-FOR-US: Mattermost
 CVE-2015-9548 (An issue was discovered in Mattermost Server before 1.2.0. It allows a ...)
 	NOT-FOR-US: Mattermost
-CVE-2020-XXXX [MITM response injection attack when using STARTTLS with IMAP, POP3 and SMTP]
+CVE-2020-14954 [MITM response injection attack when using STARTTLS with IMAP, POP3 and SMTP]
 	- mutt 1.14.4-1
-	[stretch] - mutt 1.7.2-1+deb9u3
-	[buster] - mutt 1.10.1-2.1+deb10u2
 	- neomutt 20200619+dfsg.1-1
 	NOTE: https://gitlab.com/muttmua/mutt/commit/c547433cdf2e79191b15c6932c57f1472bfb5ff4
 CVE-2020-14446 (An issue was discovered in WSO2 Identity Server through 5.10.0 and WSO ...)
diff --git a/data/DSA/list b/data/DSA/list
index 29b42bdf6f..c2f332ccc7 100644
--- a/data/DSA/list
+++ b/data/DSA/list
@@ -1,5 +1,5 @@
 [19 Jun 2020] DSA-4707-1 mutt - security update
-	{CVE-2020-14093}
+	{CVE-2020-14093 CVE-2020-14954}
 	[stretch] - mutt 1.7.2-1+deb9u3
 	[buster] - mutt 1.10.1-2.1+deb10u2
 [18 Jun 2020] DSA-4706-1 drupal7 - security update
-- 
cgit v1.2.3