[Git][security-tracker-team/security-tracker][master] Add CVE-2021-29274/redmine

Salvatore Bonaccorso carnil at debian.org
Mon Mar 29 19:37:27 BST 2021



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4b28d6ea by Salvatore Bonaccorso at 2021-03-29T20:31:39+02:00
Add CVE-2021-29274/redmine

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -277,7 +277,8 @@ CVE-2021-29276
 CVE-2021-29275
 	RESERVED
 CVE-2021-29274 (Redmine 4.1.x before 4.1.2 allows XSS because an issue's subject is mi ...)
-	TODO: check
+	- redmine <not-affected> (Vulnerable code introduced in 4.1.0)
+	NOTE: https://www.redmine.org/issues/33846
 CVE-2021-XXXX [first_boot: Use session to verify first boot welcome step]
 	- freedombox 21.4.2
 	- plinth <removed>



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4b28d6eaefc7cb92d3e009a1f9389adffbe71d32

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4b28d6eaefc7cb92d3e009a1f9389adffbe71d32
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210329/c2d1e4b0/attachment.htm>


More information about the debian-security-tracker-commits mailing list