[Git][security-tracker-team/security-tracker][master] Mark CVE-2021-44832 as no-dsa
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Dec 29 16:19:55 GMT 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
3c1222c4 by Salvatore Bonaccorso at 2021-12-29T17:18:26+01:00
Mark CVE-2021-44832 as no-dsa
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3653,6 +3653,8 @@ CVE-2021-4103
RESERVED
CVE-2021-44832 (Apache Log4j2 versions 2.0-beta7 through 2.17.0 (excluding security fi ...)
- apache-log4j2 2.17.1-1 (bug #1002813)
+ [bullseye] - apache-log4j2 <no-dsa> (Minor issue; requires attacker with permissions to modify the logging configuration file)
+ [buster] - apache-log4j2 <no-dsa> (Minor issue; requires attacker with permissions to modify the logging configuration file)
NOTE: https://logging.apache.org/log4j/2.x/security.html#CVE-2021-44832
NOTE: https://issues.apache.org/jira/browse/LOG4J2-3293
NOTE: https://lists.apache.org/thread/s1o5vlo78ypqxnzn6p8zf6t9shtq5143
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3c1222c47226070daa97895d8e9950725d3757d5
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3c1222c47226070daa97895d8e9950725d3757d5
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211229/0278fb08/attachment.htm>
More information about the debian-security-tracker-commits
mailing list