[Git][security-tracker-team/security-tracker][master] bugnums

Moritz Muehlenhoff (@jmm) jmm at debian.org
Fri Jul 2 15:51:05 BST 2021 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a2dff7d4 by Moritz Muehlenhoff at 2021-07-02T16:50:34+02:00
bugnums

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -7710,7 +7710,7 @@ CVE-2021-32679
 CVE-2021-32678
 	RESERVED
 CVE-2021-32677 (FastAPI is a web framework for building APIs with Python 3.6+ based on ...)
-	- fastapi <unfixed>
+	- fastapi <unfixed> (bug #990582)
 	NOTE: https://github.com/tiangolo/fastapi/security/advisories/GHSA-8h2j-cgx8-6xv7
 	NOTE: https://github.com/tiangolo/fastapi/commit/fa7e3c996edf2d5482fff8f9d890ac2390dede4d (0.65.2)
 CVE-2021-32676 (Nextcloud Talk is a fully on-premises audio/video and chat communicati ...)
@@ -7984,7 +7984,7 @@ CVE-2021-3543 (A flaw null pointer dereference in the Nitro Enclaves kernel driv
 	NOTE: https://git.kernel.org/linus/f1ce3986baa62cffc3c5be156994de87524bab99
 	NOTE: nitro_enclaves not enabled in Debian binary builds
 CVE-2021-32575 (HashiCorp Nomad and Nomad Enterprise up to version 1.0.4 bridge networ ...)
-	- nomad <unfixed>
+	- nomad <unfixed> (bug #990581)
 	NOTE: https://discuss.hashicorp.com/t/hcsec-2021-14-nomad-bridge-networking-mode-allows-arp-spoofing-from-other-bridged-tasks-on-same-node/24296
 CVE-2021-32574
 	RESERVED
@@ -20751,7 +20751,7 @@ CVE-2021-27349 (Advanced Order Export before 3.1.8 for WooCommerce allows XSS, a
 CVE-2021-27348
 	RESERVED
 CVE-2021-27347 (Use after free in lzma_decompress_buf function in stream.c in Irzip 0. ...)
-	- lrzip <unfixed>
+	- lrzip <unfixed> (bug #990583)
 	NOTE: https://github.com/ckolivas/lrzip/issues/165
 CVE-2021-27346
 	RESERVED



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a2dff7d46e765dcca7c1b394966e527e33103a9f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a2dff7d46e765dcca7c1b394966e527e33103a9f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210702/2ad88349/attachment.htm>

More information about the debian-security-tracker-commits mailing list