From b515bdb1278f4e9cbf6fe9a3fde41099590bbdcc Mon Sep 17 00:00:00 2001
From: Sylvain Beucler <beuc@beuc.net>
Date: Wed, 12 Jan 2022 17:13:28 +0100
Subject: CVE-2020-27746/slurm-llnl: stretch not-affected

---
 data/CVE/list.2020 | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

(limited to 'data/CVE/list.2020')

diff --git a/data/CVE/list.2020 b/data/CVE/list.2020
index c0b5ad54ea..7a0d599c92 100644
--- a/data/CVE/list.2020
+++ b/data/CVE/list.2020
@@ -8306,11 +8306,12 @@ CVE-2020-27746 (Slurm before 19.05.8 and 20.x before 20.02.6 exposes Sensitive I
 	{DSA-4841-1}
 	- slurm-wlm <not-affected> (Fixed with first upload to Debian with renamed source package)
 	- slurm-llnl <removed> (bug #974722)
-	[stretch] - slurm-llnl <no-dsa> (Minor issue)
+	[stretch] - slurm-llnl <not-affected> (Vulnerable code introduced later)
 	NOTE: https://www.schedmd.com/news.php?id=240
 	NOTE: https://lists.schedmd.com/pipermail/slurm-announce/2020/000045.html
 	NOTE: https://github.com/SchedMD/slurm/commit/07309deb45c33e735e191faf9dd31cca1054a15c
 	NOTE: slurm-wlm/20.02.6-1 changed the source package name and included the fix
+	NOTE: Introduced by: https://github.com/SchedMD/slurm/commit/e3140b7f8d96ced9dc85089caa65dd7c6be396fd (slurm-17-11-0-0rc1)
 CVE-2020-27745 (Slurm before 19.05.8 and 20.x before 20.02.6 has an RPC Buffer Overflo ...)
 	{DSA-4841-1}
 	- slurm-wlm <not-affected> (Fixed with first upload to Debian with renamed source package)
-- 
cgit v1.2.3