diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2021-02-28 10:44:29 +0100 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2021-02-28 10:44:29 +0100 |
| commit | 5bd0aa54b4c2d611a5bef7eb153cfd950d59a1eb (patch) | |
| tree | c79a0a8ee527efb66e62366ca516e5c336349bd9 /data/CVE/list.2020 | |
| parent | e13a6c00526239dbafcded700508cc815b279a82 (diff) | |
Mark CVE-2020-28491 as no-dsa
Diffstat (limited to 'data/CVE/list.2020')
| -rw-r--r-- | data/CVE/list.2020 | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/data/CVE/list.2020 b/data/CVE/list.2020 index 116fdddb2f..d379d27a8a 100644 --- a/data/CVE/list.2020 +++ b/data/CVE/list.2020 @@ -5473,6 +5473,7 @@ CVE-2020-28492 REJECTED CVE-2020-28491 (This affects the package com.fasterxml.jackson.dataformat:jackson-data ...) - jackson-dataformat-cbor <unfixed> + [buster] - jackson-dataformat-cbor <no-dsa> (Minor issue) NOTE: https://github.com/FasterXML/jackson-dataformats-binary/commit/de072d314af8f5f269c8abec6930652af67bc8e6 NOTE: https://github.com/FasterXML/jackson-dataformats-binary/issues/186 CVE-2020-28490 (The package async-git before 1.13.2 are vulnerable to Command Injectio ...) |