[Git][security-tracker-team/security-tracker][master] CVE-2021-32808/ckeditor: precise versions

[Sylvain Beucler (@beuc)]

Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker


Commits:
29e929ad by Sylvain Beucler at 2021-08-16T19:46:44+02:00
CVE-2021-32808/ckeditor: precise versions

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -13813,7 +13813,10 @@ CVE-2021-32809 (ckeditor is an open source WYSIWYG HTML editor with rich content
 	NOTE: Introduced by https://github.com/ckeditor/ckeditor4/commit/ca0851c7a14f616a0c4cda905816aa87ca399efb (v4.5.2)
 CVE-2021-32808 (ckeditor is an open source WYSIWYG HTML editor with rich content suppo ...)
 	- ckeditor <unfixed>
+	[stretch] - ckeditor <not-affected> (Vulnerable code introduced later)
 	NOTE: https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-6226-h7ff-ch6c
+	NOTE: https://github.com/ckeditor/ckeditor4/commit/0cb59313c834c94cec4c4d4c114b6ecb0270e21a (v4.16.2)
+	NOTE: Introduced by https://github.com/ckeditor/ckeditor4/commit/72428a762271d5e54a609a7913356a6d309c895d (v4.13.0)
 CVE-2021-32807 (The module `AccessControl` defines security policies for Python code u ...)
 	NOT-FOR-US: Zope AccessControl
 CVE-2021-32806 (Products.isurlinportal is a replacement for isURLInPortal method in Pl ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/29e929ad164088cb2b6d02c17e15b213269a35f3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/29e929ad164088cb2b6d02c17e15b213269a35f3
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210816/3eddbd94/attachment-0001.htm>