[Git][security-tracker-team/security-tracker][master] two more regression fixes for gnome-autoar
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Mon Jun 7 18:10:03 BST 2021
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
16deaf0a by Moritz Muehlenhoff at 2021-06-07T19:09:37+02:00
two more regression fixes for gnome-autoar
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -12590,6 +12590,9 @@ CVE-2021-28650 (autoar-extractor.c in GNOME gnome-autoar before 0.3.1, as used b
NOTE: https://gitlab.gnome.org/GNOME/gnome-autoar/-/issues/12
NOTE: Fixed by: https://gitlab.gnome.org/GNOME/gnome-autoar/-/commit/8109c368c6cfdb593faaf698c2bf5da32bb1ace4
NOTE: Issue exists because of an incomplete fix for CVE-2020-36241.
+ NOTE: Two followup/regression patches:
+ NOTE: https://gitlab.gnome.org/GNOME/gnome-autoar/-/commit/135053d5d3a0320891cf2e2ad4684b648bb46fc8
+ NOTE: https://gitlab.gnome.org/GNOME/gnome-autoar/-/commit/b9590ab77b70e74e9deffd2af6c32908dc3c5aaf
CVE-2021-28649 (An incorrect permission vulnerability in the product installer for Tre ...)
NOT-FOR-US: Trend Micro
CVE-2021-28648 (Trend Micro Antivirus for Mac 2020 v10.5 and 2021 v11 (Consumer) is vu ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/16deaf0a4b23f856ce62b0d9a98e2909d1c4fc00
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/16deaf0a4b23f856ce62b0d9a98e2909d1c4fc00
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210607/4a1d4415/attachment.htm>
More information about the debian-security-tracker-commits
mailing list