[Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2021-20261: Use shorter URI

Salvatore Bonaccorso carnil at debian.org
Thu Mar 11 11:33:19 GMT 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
59b9fd49 by Salvatore Bonaccorso at 2021-03-11T12:24:37+01:00
CVE-2021-20261: Use shorter URI

- - - - -
2b1414b0 by Salvatore Bonaccorso at 2021-03-11T12:31:13+01:00
Add CVE-2021-20269 associated with kexec-tools

Details need to verified het as the Red Hat bug gives no further
references so far.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -19079,8 +19079,10 @@ CVE-2021-20270
 	- pygments <unfixed> (bug #984664)
 	NOTE: https://github.com/pygments/pygments/issues/1625
 	NOTE: https://github.com/pygments/pygments/commit/f91804ff4772e3ab41f46e28d370f57898700333
-CVE-2021-20269
+CVE-2021-20269 [incorrect permissions on kdump dmesg file]
 	RESERVED
+	- kexec-tools <unfixed>
+	NOTE: https://www.openwall.com/lists/oss-security/2021/03/11/2
 CVE-2021-20268 (An out-of-bounds access flaw was found in the Linux kernel's implement ...)
 	- linux 5.10.12-1
 	[buster] - linux <not-affected> (Vulnerable code introduced later)
@@ -19111,7 +19113,7 @@ CVE-2021-20262 (A flaw was found in Keycloak 12.0.0 where re-authentication does
 CVE-2021-20261
 	RESERVED
 	- linux 4.5.1-1
-	NOTE: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=a0c80efe5956ccce9fe7ae5c78542578c07bc20a
+	NOTE: https://git.kernel.org/linus/a0c80efe5956ccce9fe7ae5c78542578c07bc20a
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1932150
 CVE-2021-20260
 	RESERVED



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/823a3987b0307ca524f4343600d37797835027e6...2b1414b02f7412a92d478c0f614e09b501200758

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/823a3987b0307ca524f4343600d37797835027e6...2b1414b02f7412a92d478c0f614e09b501200758
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210311/61fc7b48/attachment.htm>

More information about the debian-security-tracker-commits mailing list