Mark CVE-2020-10754 as unimportant

The issue is present source-wise but it effectively only affects builds with the ifcfg-rh settings plugin enabled. This is (and cannot be) for Debian builds.
author: Salvatore Bonaccorso <carnil@debian.org> 2020-06-01 10:55:33 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2020-06-01 10:55:33 +0200
commit: 91718390c87304ec8bcde9b6d6de2f3adea993e1 (patch)
tree: 7c7402a16ad9e60c8187e91c5060bba5784fffa1
parent: f4ce03837e7d8b26f86b6feb3cfeedf864a843ef (diff)
1 files changed, 4 insertions, 1 deletions
diff --git a/data/CVE/list.2020 b/data/CVE/list.2020
index cb07e8e547..595834108a 100644
--- a/data/CVE/list.2020
+++ b/data/CVE/list.2020
@@ -6866,9 +6866,12 @@ CVE-2020-10755
 	RESERVED
 CVE-2020-10754 [user configuration not honoured leaving the connection unauthenticated via insecure defaults]
 	RESERVED
-	- network-manager <unfixed>
+	- network-manager <unfixed> (unimportant)
 	NOTE: https://gitlab.freedesktop.org/NetworkManager/NetworkManager/-/issues/448
 	NOTE: https://gitlab.freedesktop.org/NetworkManager/NetworkManager/-/commit/8affcc19b61fc3c516474ba075e61b82030feeb4
+	NOTE: Only affects builds enabling ifcfg-rh settings plugin, source-wise only
+	NOTE: affected but not the Debian binary builds (and is RedHat/Fedora specific
+	NOTE: plugin).
 CVE-2020-10753
 	RESERVED
 CVE-2020-10752
author	Salvatore Bonaccorso <carnil@debian.org>	2020-06-01 10:55:33 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2020-06-01 10:55:33 +0200
commit	91718390c87304ec8bcde9b6d6de2f3adea993e1 (patch)
tree	7c7402a16ad9e60c8187e91c5060bba5784fffa1
parent	f4ce03837e7d8b26f86b6feb3cfeedf864a843ef (diff)