[Git][security-tracker-team/security-tracker][master] Add CVE-2021-31855/kf5-messagelib

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Jun 2 21:19:28 BST 2021



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
968ea0ca by Salvatore Bonaccorso at 2021-06-02T22:18:54+02:00
Add CVE-2021-31855/kf5-messagelib

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -4530,7 +4530,10 @@ CVE-2021-31857
 CVE-2021-31856 (A SQL Injection vulnerability in the REST API in Layer5 Meshery 0.5.2  ...)
 	NOT-FOR-US: Layer Meshery
 CVE-2021-31855 (KDE Messagelib through 5.17.0 reveals cleartext of encrypted messages  ...)
-	TODO: check
+	- kf5-messagelib <unfixed>
+	- kdepim4 <removed>
+	NOTE: https://kde.org/info/security/advisory-20210429-1.txt
+	NOTE: https://commits.kde.org/messagelib/3b5b171e91ce78b966c98b1292a1bcbc8d984799
 CVE-2021-31854
 	RESERVED
 CVE-2021-31853



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/968ea0ca50fe0028d997534b409705d8f7513c92

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/968ea0ca50fe0028d997534b409705d8f7513c92
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210602/5dcc1fb8/attachment.htm>


More information about the debian-security-tracker-commits mailing list