[Git][security-tracker-team/security-tracker][master] Update information on CVE-2021-3449
Salvatore Bonaccorso
carnil at debian.org
Thu Mar 25 19:02:24 GMT 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
f68e26bd by Salvatore Bonaccorso at 2021-03-25T20:01:24+01:00
Update information on CVE-2021-3449
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1068,10 +1068,11 @@ CVE-2021-3449 [NULL pointer deref in signature_algorithms processing]
- openssl <unfixed>
- openssl1.0 <not-affected> (Vulnerability does not impact 1.0.2 series)
NOTE: https://www.openssl.org/news/secadv/20210325.txt
- NOTE: https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=46d81bcabe2d36055bdd37079ed6acf976d967a7
- NOTE: https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=3ff38629a2df6635f36bfb79513cc6440db8cd70
- NOTE: https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=fb9fa6b51defd48157eeb207f52181f735d96148
- NOTE: https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=d33c2a3d8453a75509bcc8d2cf7d2dc2a3a518d0
+ NOTE: Introduced by: https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=c589c34e619c8700ab16b152dd9c8ee58356b319 (OpenSSL_1_1_1-pre1)
+ NOTE: Prerequisite: https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=46d81bcabe2d36055bdd37079ed6acf976d967a7
+ NOTE: Prerequisite (test): https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=3ff38629a2df6635f36bfb79513cc6440db8cd70
+ NOTE: Fixed by: https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=fb9fa6b51defd48157eeb207f52181f735d96148 (OpenSSL_1_1_1k)
+ NOTE: Followup: https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=d33c2a3d8453a75509bcc8d2cf7d2dc2a3a518d0
CVE-2021-28687 [HVM soft-reset crashes toolstack]
RESERVED
- xen <unfixed>
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f68e26bd1935c94f7fc9a78a6aae27f208c06433
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f68e26bd1935c94f7fc9a78a6aae27f208c06433
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210325/7e539aa1/attachment.htm>
More information about the debian-security-tracker-commits
mailing list