[Git][security-tracker-team/security-tracker][master] libmobi entered the archive, mark as unfixed for further checking

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Dec 9 08:05:16 GMT 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
64d3f539 by Salvatore Bonaccorso at 2021-12-09T09:04:43+01:00
libmobi entered the archive, mark as unfixed for further checking

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -7519,9 +7519,9 @@ CVE-2021-3891
 CVE-2021-3890
 	RESERVED
 CVE-2021-3889 (libmobi is vulnerable to Use of Out-of-range Pointer Offset ...)
-	- libmobi <itp> (bug #966677)
+	- libmobi <unfixed>
 CVE-2021-3888 (libmobi is vulnerable to Use of Out-of-range Pointer Offset ...)
-	- libmobi <itp> (bug #966677)
+	- libmobi <unfixed>
 CVE-2021-3887
 	RESERVED
 CVE-2022-20611
@@ -9356,7 +9356,7 @@ CVE-2021-3882 (LedgerSMB does not set the 'Secure' attribute on the session auth
 	NOTE: https://huntr.dev/bounties/7061d97a-98a5-495a-8ba0-3a4c66091e9d/
 	NOTE: https://ledgersmb.org/content/security-advisory-cve-2021-3882-non-secure-session-cookie
 CVE-2021-3881 (libmobi is vulnerable to Out-of-bounds Read ...)
-	- libmobi <itp> (bug #966677)
+	- libmobi <unfixed>
 CVE-2021-3880
 	RESERVED
 CVE-2021-3879 (snipe-it is vulnerable to Improper Neutralization of Input During Web  ...)
@@ -14041,7 +14041,7 @@ CVE-2021-40330 (git_connect_git in connect.c in Git before 2.30.1 allows a repos
 CVE-2021-40329 (The Authentication API in Ping Identity PingFederate before 10.3 misha ...)
 	NOT-FOR-US: Ping Identity PingFederate
 CVE-2021-3751 (libmobi is vulnerable to Out-of-bounds Write ...)
-	- libmobi <itp> (bug #966677)
+	- libmobi <unfixed>
 CVE-2021-40328
 	RESERVED
 CVE-2021-40327



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/64d3f53982bb3b1ccf7b50d402542b209412a6b0

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/64d3f53982bb3b1ccf7b50d402542b209412a6b0
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211209/8c412d46/attachment.htm>

More information about the debian-security-tracker-commits mailing list