[Git][security-tracker-team/security-tracker][master] libzstd's #981404 is fixed in buster in 1.3.8+dfsg-3+deb10u

Wed Feb 10 07:05:57 GMT 2021


Sebastien Delafond pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3b470db9 by SÃ©bastien Delafond at 2021-02-10T08:04:39+01:00
libzstd's #981404 is fixed in buster in 1.3.8+dfsg-3+deb10u

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -182,6 +182,7 @@ CVE-2021-26910 (Firejail before 0.9.64.4 allows attackers to bypass intended acc
 	NOTE: https://unparalleled.eu/blog/2021/20210208-rigged-race-against-firejail-for-local-root/
 CVE-2019-XXXX [zstd adds read permissions to files while being compressed or uncompressed]
 	- libzstd 1.4.8+dfsg-1 (bug #981404)
+	[buster] - libzstd 1.3.8+dfsg-3+deb10u
 	NOTE: https://github.com/facebook/zstd/issues/1630
 CVE-2021-26852
 	RESERVED



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3b470db93a9d2ac5c2a670cce07711dba1d35d90

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3b470db93a9d2ac5c2a670cce07711dba1d35d90
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210210/7e1aff54/attachment.html>
