[Git][security-tracker-team/security-tracker][master] new connman issue

Moritz Muehlenhoff (@jmm) jmm at debian.org
Wed Jun 9 13:28:39 BST 2021 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
240d9d43 by Moritz Muehlenhoff at 2021-06-09T14:28:29+02:00
new connman issue
openjpeg no-dsa

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1130,6 +1130,8 @@ CVE-2021-33834
 	RESERVED
 CVE-2021-33833
 	RESERVED
+	- connman <unfixed>
+	NOTE: https://www.openwall.com/lists/oss-security/2021/06/09/1
 CVE-2021-33832
 	RESERVED
 CVE-2021-33831
@@ -1200,9 +1202,10 @@ CVE-2021-3577
 	RESERVED
 CVE-2021-3576
 	RESERVED
-CVE-2021-3575 [heap-buffer-overflow in color.c may lead to DoS or arbitrary code execution]
+CVE-2021-3575 [heap-buffer-overflow in color.c may lead to DoS]
 	RESERVED
 	- openjpeg2 <unfixed>
+	[buster] - openjpeg2 <no-dsa> (Minor issue)
 	NOTE: https://github.com/uclouvain/openjpeg/issues/1347
 CVE-2021-3574
 	RESERVED
@@ -109241,11 +109244,10 @@ CVE-2019-19631 (An issue was discovered in Big Switch Big Monitoring Fabric 6.2
 	NOT-FOR-US: Big Switch Networks
 CVE-2019-19630 (HTMLDOC 1.9.7 allows a stack-based buffer overflow in the hd_strlcpy() ...)
 	{DLA-2026-1}
-	- htmldoc 1.9.7-1 (low; bug #988289)
-	[buster] - htmldoc <no-dsa> (Minor issue)
-	[stretch] - htmldoc <no-dsa> (Minor issue)
+	- htmldoc 1.9.7-1 (unimportant; bug #988289)
 	NOTE: https://github.com/michaelrsweet/htmldoc/issues/370
 	NOTE: https://github.com/michaelrsweet/htmldoc/commit/8a129c520e90fc967351f3e165f967128a88f09c
+	NOTE: Crash in CLI tool, no security impact
 CVE-2019-19629 (In GitLab EE 10.5 through 12.5.3, 12.4.5, and 12.3.8, when transferrin ...)
 	- gitlab <not-affected> (Only affects Gitlab EE)
 	NOTE: https://about.gitlab.com/blog/2019/12/10/critical-security-release-gitlab-12-5-4-released/



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/240d9d43e4d0437dd89b45a17459f9a5e18f4579

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/240d9d43e4d0437dd89b45a17459f9a5e18f4579
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210609/a36e3e22/attachment.htm>

More information about the debian-security-tracker-commits mailing list