[Git][security-tracker-team/security-tracker][master] Mark CVE-2021-29425/commons-io as no-dsa for buster
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Aug 20 20:13:08 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
1c68fa01 by Salvatore Bonaccorso at 2021-08-20T21:12:52+02:00
Mark CVE-2021-29425/commons-io as no-dsa for buster
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -23624,6 +23624,7 @@ CVE-2021-29426
CVE-2021-29425 (In Apache Commons IO before 2.7, When invoking the method FileNameUtil ...)
{DLA-2741-1}
- commons-io 2.8.0-1
+ [buster] - commons-io <no-dsa> (Minor issue; can be fixed via point release)
NOTE: https://www.openwall.com/lists/oss-security/2021/04/12/1
NOTE: https://issues.apache.org/jira/browse/IO-556
CVE-2021-3476 (A flaw was found in OpenEXR's B44 uncompression functionality in versi ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1c68fa01c6a6fd0c346f8f026949e11a493ba4c9
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1c68fa01c6a6fd0c346f8f026949e11a493ba4c9
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210820/60738a0b/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list