[Git][security-tracker-team/security-tracker][master] Add Debian bug references for two exiv2 issues
Salvatore Bonaccorso
carnil at debian.org
Sat May 8 15:08:54 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
2cfa135c by Salvatore Bonaccorso at 2021-05-08T16:08:21+02:00
Add Debian bug references for two exiv2 issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -6939,13 +6939,13 @@ CVE-2021-29466 (Discord-Recon is a bot for the Discord chat service. In versions
CVE-2021-29465 (Discord-Recon is a bot for the Discord chat service. Versions of Disco ...)
NOT-FOR-US: Discord-Recon
CVE-2021-29464 (Exiv2 is a command-line utility and C++ library for reading, writing, ...)
- - exiv2 <unfixed>
+ - exiv2 <unfixed> (bug #988242)
[buster] - exiv2 <not-affected> (Vulnerable code introduced later)
[stretch] - exiv2 <not-affected> (Vulnerable code introduced later)
NOTE: https://github.com/Exiv2/exiv2/security/advisories/GHSA-jgm9-5fw5-pw9p
NOTE: https://github.com/Exiv2/exiv2/commit/f9308839198aca5e68a65194f151a1de92398f54
CVE-2021-29463 (Exiv2 is a command-line utility and C++ library for reading, writing, ...)
- - exiv2 <unfixed>
+ - exiv2 <unfixed> (bug #988241)
[buster] - exiv2 <not-affected> (webp support introduced in 0.27)
[stretch] - exiv2 <not-affected> (webp support introduced in 0.27)
NOTE: https://github.com/Exiv2/exiv2/security/advisories/GHSA-5p8g-9xf3-gfrr
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2cfa135ce4043ae82c7fb58b4a99887434202b9d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2cfa135ce4043ae82c7fb58b4a99887434202b9d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210508/996ca09a/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list