diff options
author | Thorsten Alteholz <debian@alteholz.de> | 2021-11-27 00:30:49 +0100 |
---|---|---|
committer | Thorsten Alteholz <debian@alteholz.de> | 2021-11-27 00:30:49 +0100 |
commit | 001ff21cb8880a3ab32219c25056304aa1a56d5c (patch) | |
tree | 4daae7ef302351ef816b8755557b6f5790d34029 | |
parent | 1aec9f49adc0f06909ff13c9e9c0abf7469e833c (diff) |
mark CVE-2020-27511 as no-dsa for Stretch
-rw-r--r-- | data/CVE/list.2020 | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/data/CVE/list.2020 b/data/CVE/list.2020 index 498a1b39db..628da07fe6 100644 --- a/data/CVE/list.2020 +++ b/data/CVE/list.2020 @@ -8797,6 +8797,7 @@ CVE-2020-27512 CVE-2020-27511 (An issue was discovered in the stripTags and unescapeHTML components i ...) - prototypejs <unfixed> (bug #991898) [bullseye] - prototypejs <no-dsa> (Minor issue) + [stretch] - prototypejs <no-dsa> (Minor issue) NOTE: https://github.com/prototypejs/prototype/blame/dee2f7d8611248abce81287e1be4156011953c90/src/prototype/lang/string.js#L283 NOTE: https://github.com/yetingli/PoCs/blob/main/CVE-2020-27511/Prototype.md NOTE: CVE mentions newer version but vulnerable code exists in older versions too |