[Git][security-tracker-team/security-tracker][master] Update status for CVE-2021-44538/olm

Mon Dec 13 18:25:55 GMT 2021


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
cbc0fa9c by Salvatore Bonaccorso at 2021-12-13T19:25:24+01:00
Update status for CVE-2021-44538/olm

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -880,8 +880,11 @@ CVE-2021-44538
 	RESERVED
 	- element-web <itp> (bug #866502)
 	- olm <unfixed>
+	[buster] - olm <not-affected> (Vulnerable code introduced later)
 	- node-matrix-js-sdk <unfixed>
 	NOTE: https://matrix.org/blog/2021/12/13/disclosure-buffer-overflow-in-libolm-and-matrix-js-sdk/
+	NOTE: Introduced by: https://gitlab.matrix.org/matrix-org/olm/-/commit/39a1ee0b18f0fced6d7bc293cc9a46ea70ec9e96 (3.1.4)
+	NOTE: Fixed by: https://gitlab.matrix.org/matrix-org/olm/-/commit/c23ce70fc66c26db5839ddb5a3b46d4c3d3abed6 (3.2.8)
 CVE-2021-44537
 	RESERVED
 CVE-2021-44536



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cbc0fa9c41cb96664e1df23971a89f795a494769

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cbc0fa9c41cb96664e1df23971a89f795a494769
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211213/b36d63e9/attachment.htm>
