[Git][security-tracker-team/security-tracker][master] Update information on CVE-2021-3449

Salvatore Bonaccorso carnil at debian.org
Thu Mar 25 19:02:24 GMT 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f68e26bd by Salvatore Bonaccorso at 2021-03-25T20:01:24+01:00
Update information on CVE-2021-3449

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1068,10 +1068,11 @@ CVE-2021-3449 [NULL pointer deref in signature_algorithms processing]
 	- openssl <unfixed>
 	- openssl1.0 <not-affected> (Vulnerability does not impact 1.0.2 series)
 	NOTE: https://www.openssl.org/news/secadv/20210325.txt
-	NOTE: https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=46d81bcabe2d36055bdd37079ed6acf976d967a7
-	NOTE: https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=3ff38629a2df6635f36bfb79513cc6440db8cd70
-	NOTE: https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=fb9fa6b51defd48157eeb207f52181f735d96148
-	NOTE: https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=d33c2a3d8453a75509bcc8d2cf7d2dc2a3a518d0
+	NOTE: Introduced by: https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=c589c34e619c8700ab16b152dd9c8ee58356b319 (OpenSSL_1_1_1-pre1)
+	NOTE: Prerequisite: https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=46d81bcabe2d36055bdd37079ed6acf976d967a7
+	NOTE: Prerequisite (test): https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=3ff38629a2df6635f36bfb79513cc6440db8cd70
+	NOTE: Fixed by: https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=fb9fa6b51defd48157eeb207f52181f735d96148 (OpenSSL_1_1_1k)
+	NOTE: Followup: https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=d33c2a3d8453a75509bcc8d2cf7d2dc2a3a518d0
 CVE-2021-28687 [HVM soft-reset crashes toolstack]
 	RESERVED
 	- xen <unfixed>



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f68e26bd1935c94f7fc9a78a6aae27f208c06433

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f68e26bd1935c94f7fc9a78a6aae27f208c06433
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210325/7e539aa1/attachment.htm>

More information about the debian-security-tracker-commits mailing list