[Git][security-tracker-team/security-tracker][master] Add CVE-2021-3672/c-ares
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Aug 10 07:21:04 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
3620eeba by Salvatore Bonaccorso at 2021-08-10T08:20:34+02:00
Add CVE-2021-3672/c-ares
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1303,8 +1303,12 @@ CVE-2021-37746 (textview_uri_security_check in textview.c in Claws Mail before 3
[buster] - sylpheed <no-dsa> (Minor issue)
[stretch] - sylpheed <no-dsa> (Minor issue)
NOTE: https://git.claws-mail.org/?p=claws.git;a=commit;h=ac286a71ed78429e16c612161251b9ea90ccd431
-CVE-2021-3672
+CVE-2021-3672 [Missing input validation on hostnames returned by DNS servers]
RESERVED
+ - c-ares <unfixed>
+ NOTE: https://c-ares.haxx.se/adv_20210810.html
+ NOTE: https://github.com/c-ares/c-ares/commit/362f91d807d293791008cdb7616d40f7784ece83
+ NOTE: https://github.com/c-ares/c-ares/commit/44c009b8e62ea1929de68e3f438181bea469ec14
CVE-2021-37745
RESERVED
CVE-2021-37744
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3620eeba06fb4da4a1418f0bcec3bde3c19a40e1
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3620eeba06fb4da4a1418f0bcec3bde3c19a40e1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210810/ebf0ee9d/attachment.htm>
More information about the debian-security-tracker-commits
mailing list