diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2020-01-28 08:04:20 +0100 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2020-01-28 08:04:20 +0100 |
| commit | b38f4d887ce8c467aec5089488a7c7730d4d095f (patch) | |
| tree | e9e5e8888efafd3d51294dfac2bf8be904bda5ed | |
| parent | 3b74214c5b587e2f65774d8fb785608636f8f0d7 (diff) | |
twitter-bootstrap removed from unstable
| -rw-r--r-- | data/CVE/list.2018 | 8 | ||||
| -rw-r--r-- | data/CVE/list.2019 | 2 |
2 files changed, 5 insertions, 5 deletions
diff --git a/data/CVE/list.2018 b/data/CVE/list.2018 index 30f19ade9e..80b0ddd5f6 100644 --- a/data/CVE/list.2018 +++ b/data/CVE/list.2018 @@ -993,7 +993,7 @@ CVE-2018-20679 (An issue was discovered in BusyBox before 1.30.0. An out of boun CVE-2018-20678 (LibreNMS through 1.47 allows SQL injection via the html/ajax_table.php ...) NOT-FOR-US: LibreNMS CVE-2018-20677 (In Bootstrap before 3.4.0, XSS is possible in the affix configuration ...) - - twitter-bootstrap <unfixed> + - twitter-bootstrap <removed> [stretch] - twitter-bootstrap <no-dsa> (Minor issue) [jessie] - twitter-bootstrap <no-dsa> (Minor issue) - twitter-bootstrap3 3.4.0+dfsg-1 @@ -1005,7 +1005,7 @@ CVE-2018-20677 (In Bootstrap before 3.4.0, XSS is possible in the affix configur NOTE: https://github.com/twbs/bootstrap/pull/27047 NOTE: https://github.com/twbs/bootstrap/commit/2a5ba23ce8f041f3548317acc992ed8a736b609d (v3.4.0) CVE-2018-20676 (In Bootstrap before 3.4.0, XSS is possible in the tooltip data-viewpor ...) - - twitter-bootstrap <unfixed> + - twitter-bootstrap <removed> [stretch] - twitter-bootstrap <no-dsa> (Minor issue) [jessie] - twitter-bootstrap <no-dsa> (Minor issue) - twitter-bootstrap3 3.4.0+dfsg-1 @@ -18789,7 +18789,7 @@ CVE-2018-14044 (The RateTransposer::setChannels function in RateTransposer.cpp i CVE-2018-14043 (mstdlib (aka the M Standard Library for C) 1.2.0 has incorrect file ac ...) NOT-FOR-US: mstdlib CVE-2018-14042 (In Bootstrap before 4.1.2, XSS is possible in the data-container prope ...) - - twitter-bootstrap <unfixed> + - twitter-bootstrap <removed> [stretch] - twitter-bootstrap <no-dsa> (Minor issue) [jessie] - twitter-bootstrap <no-dsa> (Minor issue) - twitter-bootstrap3 3.4.0+dfsg-1 (low; bug #907414) @@ -18816,7 +18816,7 @@ CVE-2018-14041 (In Bootstrap before 4.1.2, XSS is possible in the data-target pr NOTE: https://github.com/twbs/bootstrap/commit/cc61edfa8af7b5ec9d4888c59bf94377e499b78b (v4.1.2) CVE-2018-14040 (In Bootstrap before 4.1.2, XSS is possible in the collapse data-parent ...) {DLA-1479-1} - - twitter-bootstrap <unfixed> + - twitter-bootstrap <removed> [stretch] - twitter-bootstrap <no-dsa> (Minor issue) [jessie] - twitter-bootstrap <no-dsa> (Minor issue) - twitter-bootstrap3 3.4.0+dfsg-1 (low; bug #907414) diff --git a/data/CVE/list.2019 b/data/CVE/list.2019 index d1bf779e1e..6596560aa8 100644 --- a/data/CVE/list.2019 +++ b/data/CVE/list.2019 @@ -32423,7 +32423,7 @@ CVE-2019-8331 (In Bootstrap before 3.4.1 and 4.3.x before 4.3.1, XSS is possible - twitter-bootstrap3 3.4.1+dfsg-1 [stretch] - twitter-bootstrap3 3.3.7+dfsg-2+deb9u2 [jessie] - twitter-bootstrap3 <no-dsa> (Minor issue) - - twitter-bootstrap <unfixed> + - twitter-bootstrap <removed> [stretch] - twitter-bootstrap <no-dsa> (Minor issue; XSS in developer-issued input when HTML is enabled) [jessie] - twitter-bootstrap <no-dsa> (Minor issue; XSS in developer-issued input when HTML is enabled) NOTE: https://github.com/twbs/bootstrap/pull/28236 |