[Git][security-tracker-team/security-tracker][master] Update status for CVE-2021-20267/neutron
Salvatore Bonaccorso
carnil at debian.org
Fri May 7 05:07:42 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
257dc616 by Salvatore Bonaccorso at 2021-05-07T06:02:50+02:00
Update status for CVE-2021-20267/neutron
Thomas Goirand (zigo) mentioned that the issue is not yet fixed, cf.
https://bugs.debian.org/985104#23 .
Some background: In upstream bugreport starting in in comment #17
<https://bugs.launchpad.net/neutron/+bug/1902917/comments/17> it was
found that the original patch is not enough, followed with a proposed
further change at
https://review.opendev.org/c/openstack/neutron/+/783743 which was not
yet merged.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -28896,11 +28896,12 @@ CVE-2021-20268 (An out-of-bounds access flaw was found in the Linux kernel's imp
NOTE: https://git.kernel.org/linus/bc895e8b2a64e502fbba72748d59618272052a8b
CVE-2021-20267
RESERVED
- - neutron 2:17.1.1-1 (bug #985104)
+ - neutron <unfixed> (bug #985104)
[buster] - neutron <no-dsa> (Minor issue)
[stretch] - neutron <no-dsa> (Minor issue)
NOTE: https://bugs.launchpad.net/neutron/+bug/1902917
NOTE: https://review.opendev.org/c/openstack/neutron/+/776599
+ NOTE: Followup: https://review.opendev.org/c/openstack/neutron/+/783743
CVE-2021-20266 (A flaw was found in RPM's hdrblobInit() in lib/header.c. This flaw all ...)
- rpm <unfixed> (bug #985308)
[bullseye] - rpm <no-dsa> (Minor issue)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/257dc6166e2c30a15ff6169117f33b884b7cfc9f
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/257dc6166e2c30a15ff6169117f33b884b7cfc9f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210507/9fa3fab7/attachment.htm>
More information about the debian-security-tracker-commits
mailing list