[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-3560/policykit-1 via unstable

Thu Jun 3 19:49:54 BST 2021


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6813a4e9 by Salvatore Bonaccorso at 2021-06-03T20:49:22+02:00
Track fixed version for CVE-2021-3560/policykit-1 via unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -784,7 +784,7 @@ CVE-2021-3561 (An Out of Bounds flaw was found fig2dev version 3.2.8a. A flawed
 	NOTE: https://sourceforge.net/p/mcj/fig2dev/ci/6827c09d2d6491cb2ae3ac7196439ff3aa791fd9/
 CVE-2021-3560 [local privilege escalation using polkit_system_bus_name_get_creds_sync()]
 	RESERVED
-	- policykit-1 <unfixed> (bug #989429)
+	- policykit-1 0.105-31 (bug #989429)
 	[buster] - policykit-1 <not-affected> (Vulnerable code introduced later)
 	[stretch] - policykit-1 <not-affected> (Vulnerable code introduced later)
 	NOTE: Issue Upstream introduced in 0.113 with https://gitlab.freedesktop.org/polkit/polkit/-/commit/bfa5036bfb93582c5a87c44b847957479d911e38



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6813a4e96146f8e9bc5cd932f51e8b65f652bf7a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6813a4e96146f8e9bc5cd932f51e8b65f652bf7a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210603/918c5709/attachment.htm>
