[Git][security-tracker-team/security-tracker][master] Add CVE-2021-3119/sqlcipher

Sat Mar 27 09:24:34 GMT 2021


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4f70d75c by Salvatore Bonaccorso at 2021-03-27T10:23:57+01:00
Add CVE-2021-3119/sqlcipher

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -12645,7 +12645,8 @@ CVE-2021-3121 (An issue was discovered in GoGo Protobuf before 1.3.2. plugin/unm
 CVE-2021-3120 (An arbitrary file upload vulnerability in the YITH WooCommerce Gift Ca ...)
 	NOT-FOR-US: YITH WooCommerce Gift Cards Premium plugin for WordPress
 CVE-2021-3119 (Zetetic SQLCipher 4.x before 4.4.3 has a NULL pointer dereferencing is ...)
-	TODO: check
+	- sqlcipher <not-affected> (Vulnerable code introduced later)
+	NOTE: https://github.com/sqlcipher/sqlcipher/commit/cb71f53e8cea4802509f182fa5bead0ac6ab0e7f#diff-9305215a9a0ea69300281fc4af90bc7f3437e34a0e1745d030213152993ddae4
 CVE-2021-3118 (** UNSUPPORTED WHEN ASSIGNED ** EVOLUCARE ECSIMAGING (aka ECS Imaging) ...)
 	NOT-FOR-US: EVOLUCARE ECSIMAGING (aka ECS Imaging)
 CVE-2021-3117



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4f70d75cf0e13686817d01c89bee06f3316acd1e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4f70d75cf0e13686817d01c89bee06f3316acd1e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210327/b1efa118/attachment.htm>
