[Git][security-tracker-team/security-tracker][master] Add CVE-2021-31804/leocad
Salvatore Bonaccorso
carnil at debian.org
Mon Apr 26 21:21:57 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d64e241c by Salvatore Bonaccorso at 2021-04-26T22:21:17+02:00
Add CVE-2021-31804/leocad
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -29,7 +29,9 @@ CVE-2021-XXXX [Session recovery feature contains a null pointer deference]
NOTE: https://issues.shibboleth.net/jira/browse/SSPCPP-927
NOTE: https://git.shibboleth.net/view/?p=cpp-sp.git;a=commit;h=5a47c3b9378f4c49392dd4d15189b70956f9f2ec
CVE-2021-31804 (LeoCAD before 21.03 sometimes allows a use-after-free during the openi ...)
- TODO: check
+ - leocad <unfixed>
+ NOTE: https://github.com/leozide/leocad/issues/645
+ NOTE: https://github.com/leozide/leocad/commit/233affe3fcdc851fa82cb058871bddd0046e1c87
CVE-2021-31803 (cPanel before 94.0.3 allows self-XSS via EasyApache 4 Save Profile (SE ...)
NOT-FOR-US: cPanel
CVE-2021-31802 (NETGEAR R7000 1.0.11.116 devices have a heap-based Buffer Overflow tha ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d64e241c49d0d1de6e36c44f6d2f37a0aa134ecb
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d64e241c49d0d1de6e36c44f6d2f37a0aa134ecb
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210426/a748aa54/attachment.htm>
More information about the debian-security-tracker-commits
mailing list