[Git][security-tracker-team/security-tracker][master] Update information for CVE-2021-28543/varnish-modules

Salvatore Bonaccorso carnil at debian.org
Sun Apr 25 07:18:14 BST 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
06d47467 by Salvatore Bonaccorso at 2021-04-25T08:17:42+02:00
Update information for CVE-2021-28543/varnish-modules

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -7264,11 +7264,11 @@ CVE-2021-28545 (Acrobat Reader DC versions versions 2020.013.20074 (and earlier)
 CVE-2021-28544
 	RESERVED
 CVE-2021-28543 (Varnish varnish-modules before 0.17.1 allows remote attackers to cause ...)
-	- varnish-modules <unfixed> (bug #985947)
-	[buster] - varnish-modules <not-affected> (Vulnerable code not present)
-	[stretch] - varnish-modules <not-affected> (Vulnerable code not present)
+	- varnish-modules <not-affected> (Vulnerable code ot present; bug #985947)
 	NOTE: https://varnish-cache.org/security/VSV00006.html
-	NOTE: https://github.com/varnish/varnish-modules/commit/2c120e576ebb73bc247790184702ba58dc0afc39
+	NOTE: Fixed by: https://github.com/varnish/varnish-modules/commit/2c120e576ebb73bc247790184702ba58dc0afc39 (0.18.0)
+	NOTE: Fixed by: https://github.com/varnish/varnish-modules/commit/71a1f1383158cc1c1cb3ab2b4d3ff93b044902f5 (0.17.1)
+	NOTE: Introduced by: https://github.com/varnish/varnish-modules/commit/b4d5927a2fbba31b1213225138f8432572414a24 (0.17.0)
 CVE-2021-28542
 	RESERVED
 CVE-2021-28541



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/06d47467ae057c41e34dcca201fdfc1e3bdb0468

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/06d47467ae057c41e34dcca201fdfc1e3bdb0468
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210425/10a9479c/attachment.htm>

More information about the debian-security-tracker-commits mailing list