[Git][security-tracker-team/security-tracker][master] Update information for CVE-2021-20297/network-manager

Wed Mar 31 08:14:13 BST 2021


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
72700f36 by Salvatore Bonaccorso at 2021-03-31T09:13:37+02:00
Update information for CVE-2021-20297/network-manager

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -22484,7 +22484,11 @@ CVE-2021-20298
 CVE-2021-20297 [Setting match.path and activating a profiles crashes NetworkManager]
 	RESERVED
 	- network-manager <unfixed>
-	NOTE: https://gitlab.freedesktop.org/NetworkManager/NetworkManager/-/commit/420784e342da4883f6debdfe10cde68507b10d27
+	[buster] - network-manager <not-affected> (Vulnerable code introduced later)
+	[stretch] - network-manager <not-affected> (Vulnerable code introduced later)
+	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1942741 (not yet public)
+	NOTE: Introduced by: https://gitlab.freedesktop.org/NetworkManager/NetworkManager/-/commit/3ced486f4162edcd03ff42fa27535130aff0c86c (1.26-rc2)
+	NOTE: Fixed by: https://gitlab.freedesktop.org/NetworkManager/NetworkManager/-/commit/420784e342da4883f6debdfe10cde68507b10d27
 CVE-2021-20296
 	RESERVED
 	- openexr <unfixed>



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/72700f36fe95e4d749561c2dee2bc11e9699edbb

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/72700f36fe95e4d749561c2dee2bc11e9699edbb
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210331/28089420/attachment.htm>
