[Git][security-tracker-team/security-tracker][master] CVE-2021-28650: Add (not yet public) reference for upstream issue
Salvatore Bonaccorso
carnil at debian.org
Wed Mar 17 08:30:24 GMT 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
109ca05a by Salvatore Bonaccorso at 2021-03-17T09:29:50+01:00
CVE-2021-28650: Add (not yet public) reference for upstream issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -8,6 +8,7 @@ CVE-2021-28650 (autoar-extractor.c in GNOME gnome-autoar before 0.3.1, as used b
- gnome-autoar <unfixed>
[buster] - gnome-autoar <not-affected> (Incomplete fix for CVE-2020-36241 not applied)
[stretch] - gnome-autoar <not-affected> (Incomplete fix for CVE-2020-36241 not applied)
+ NOTE: https://gitlab.gnome.org/GNOME/gnome-autoar/-/issues/12
NOTE: Fixed by: https://gitlab.gnome.org/GNOME/gnome-autoar/-/commit/8109c368c6cfdb593faaf698c2bf5da32bb1ace4
NOTE: Issue exists because of an incomplete fix for CVE-2020-36241.
CVE-2021-28649
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/109ca05a35a64619ede9c6ab0b9762581009d24d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/109ca05a35a64619ede9c6ab0b9762581009d24d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210317/e70fc86e/attachment.htm>
More information about the debian-security-tracker-commits
mailing list