[Git][security-tracker-team/security-tracker][master] Update severity for CVE-2021-4590{7,8}
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Dec 28 08:27:28 GMT 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d04036a7 by Salvatore Bonaccorso at 2021-12-28T09:27:12+01:00
Update severity for CVE-2021-4590{7,8}
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5,9 +5,11 @@ CVE-2021-45910 (An issue was discovered in gif2apng 1.9. There is a heap-based b
CVE-2021-45909 (An issue was discovered in gif2apng 1.9. There is a heap-based buffer ...)
- gif2apng <unfixed> (bug #1002668)
CVE-2021-45908 (An issue was discovered in gif2apng 1.9. There is a stack-based buffer ...)
- - gif2apng <unfixed> (bug #1002669)
+ - gif2apng <unfixed> (bug #1002669; unimportant)
+ NOTE: Negligible security impact
CVE-2021-45907 (An issue was discovered in gif2apng 1.9. There is a stack-based buffer ...)
- - gif2apng <unfixed> (bug #1002669)
+ - gif2apng <unfixed> (bug #1002669; unimportant)
+ NOTE: Negligible security impact
CVE-2021-45906 (OpenWrt 21.02.1 allows XSS via the NAT Rules Name screen. ...)
TODO: check
CVE-2021-45905 (OpenWrt 21.02.1 allows XSS via the Traffic Rules Name screen. ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d04036a74d95c3018195eaed279d0bea88ea32d7
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d04036a74d95c3018195eaed279d0bea88ea32d7
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211228/b3b039f6/attachment.htm>
More information about the debian-security-tracker-commits
mailing list