[Git][security-tracker-team/security-tracker][master] Reference commits for CVE-2021-28658/python-django
Salvatore Bonaccorso
carnil at debian.org
Tue Apr 6 09:51:57 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ea600e14 by Salvatore Bonaccorso at 2021-04-06T10:51:28+02:00
Reference commits for CVE-2021-28658/python-django
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3278,6 +3278,8 @@ CVE-2021-28658
RESERVED
- python-django <unfixed> (bug #986447)
NOTE: https://www.djangoproject.com/weblog/2021/apr/06/security-releases/
+ NOTE: https://github.com/django/django/commit/d4d800ca1addc4141e03c5440a849bb64d1582cd (main)
+ NOTE: https://github.com/django/django/commit/4036d62bda0e9e9f6172943794b744a454ca49c2 (2.2.20)
CVE-2021-28657 (A carefully crafted or corrupt file may trigger an infinite loop in Ti ...)
- tika <unfixed>
NOTE: https://www.openwall.com/lists/oss-security/2021/03/30/3
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ea600e1456f431ed5ead4d7fa6598ad9d70ad031
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ea600e1456f431ed5ead4d7fa6598ad9d70ad031
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210406/807f2161/attachment.htm>
More information about the debian-security-tracker-commits
mailing list