[Git][security-tracker-team/security-tracker][master] Add CVE-2021-25646/druid
Salvatore Bonaccorso
carnil at debian.org
Sat Jan 30 16:11:32 GMT 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
e133832b by Salvatore Bonaccorso at 2021-01-30T17:11:00+01:00
Add CVE-2021-25646/druid
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2091,7 +2091,7 @@ CVE-2021-25648
CVE-2021-25647 (Mobile application "Testes de Codigo" v11.3 and prior allows stored XS ...)
NOT-FOR-US: Mobile application "Testes de Codigo"
CVE-2021-25646 (Apache Druid includes the ability to execute user-provided JavaScript ...)
- TODO: check
+ - druid <itp> (bug #825797)
CVE-2019-25014 (A NULL pointer dereference was found in pkg/proxy/envoy/v2/debug.go ge ...)
NOT-FOR-US: Istio
CVE-2021-3308 (An issue was discovered in Xen 4.12.3 through 4.12.4 and 4.13.1 throug ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e133832be55cfb1036ef1fdc1918095fcc42cb75
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e133832be55cfb1036ef1fdc1918095fcc42cb75
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210130/128d43ed/attachment.html>
More information about the debian-security-tracker-commits
mailing list