[Git][security-tracker-team/security-tracker][master] follow security team and mark all rustc CVEs as no-dsa

Thorsten Alteholz (@alteholz) alteholz at debian.org
Wed May 19 15:06:55 BST 2021



Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9e18be3a by Thorsten Alteholz at 2021-05-19T16:06:38+02:00
follow security team and mark all rustc CVEs as no-dsa

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -4671,6 +4671,7 @@ CVE-2021-31162 (In the standard library in Rust before 1.52.0, a double free can
 	- rustc <unfixed>
 	[bullseye] - rustc <no-dsa> (Minor issue)
 	[buster] - rustc <no-dsa> (Minor issue)
+	[stretch] - rustc <no-dsa> (Minor issue)
 	NOTE: https://github.com/rust-lang/rust/issues/83618
 	NOTE: https://github.com/rust-lang/rust/pull/83629
 CVE-2021-31161
@@ -5723,6 +5724,7 @@ CVE-2020-36323 (In the standard library in Rust before 1.52.0, there is an optim
 	- rustc <unfixed>
 	[bullseye] - rustc <no-dsa> (Minor issue)
 	[buster] - rustc <no-dsa> (Minor issue)
+	[stretch] - rustc <no-dsa> (Minor issue)
 	NOTE: https://github.com/rust-lang/rust/issues/80335
 	NOTE: https://github.com/rust-lang/rust/pull/81728
 CVE-2020-36322 (An issue was discovered in the FUSE filesystem implementation in the L ...)
@@ -6205,12 +6207,14 @@ CVE-2020-36318 (In the standard library in Rust before 1.49.0, VecDeque::make_co
 	- rustc <unfixed> (bug #986803)
 	[bullseye] - rustc <no-dsa> (Minor issue)
 	[buster] - rustc <no-dsa> (Minor issue)
+	[stretch] - rustc <no-dsa> (Minor issue)
 	NOTE: https://github.com/rust-lang/rust/issues/79808
 	NOTE: https://github.com/rust-lang/rust/pull/79814
 CVE-2020-36317 (In the standard library in Rust before 1.49.0, String::retain() functi ...)
 	- rustc <unfixed> (bug #986803)
 	[bullseye] - rustc <no-dsa> (Minor issue)
 	[buster] - rustc <no-dsa> (Minor issue)
+	[stretch] - rustc <no-dsa> (Minor issue)
 	NOTE: https://github.com/rust-lang/rust/issues/78498
 	NOTE: https://github.com/rust-lang/rust/pull/78499
 CVE-2015-20001 (In the standard library in Rust before 1.2.0, BinaryHeap is not panic- ...)
@@ -10075,29 +10079,34 @@ CVE-2021-28879 (In the standard library in Rust before 1.52.0, the Zip implement
 	- rustc <unfixed> (bug #986803)
 	[bullseye] - rustc <no-dsa> (Minor issue)
 	[buster] - rustc <no-dsa> (Minor issue)
+	[stretch] - rustc <no-dsa> (Minor issue)
 	NOTE: https://github.com/rust-lang/rust/issues/82282
 	NOTE: https://github.com/rust-lang/rust/pull/82289
 CVE-2021-28878 (In the standard library in Rust before 1.52.0, the Zip implementation  ...)
 	- rustc <unfixed> (bug #986803)
 	[bullseye] - rustc <no-dsa> (Minor issue)
 	[buster] - rustc <no-dsa> (Minor issue)
+	[stretch] - rustc <no-dsa> (Minor issue)
 	NOTE: https://github.com/rust-lang/rust/issues/82291
 	NOTE: https://github.com/rust-lang/rust/pull/82292
 CVE-2021-28877 (In the standard library in Rust before 1.51.0, the Zip implementation  ...)
 	- rustc <unfixed> (bug #986803)
 	[bullseye] - rustc <no-dsa> (Minor issue)
 	[buster] - rustc <no-dsa> (Minor issue)
+	[stretch] - rustc <no-dsa> (Minor issue)
 	NOTE: https://github.com/rust-lang/rust/pull/80670
 CVE-2021-28876 (In the standard library in Rust before 1.52.0, the Zip implementation  ...)
 	- rustc <unfixed> (bug #986803)
 	[bullseye] - rustc <no-dsa> (Minor issue)
 	[buster] - rustc <no-dsa> (Minor issue)
+	[stretch] - rustc <no-dsa> (Minor issue)
 	NOTE: https://github.com/rust-lang/rust/issues/81740
 	NOTE: https://github.com/rust-lang/rust/pull/81741
 CVE-2021-28875 (In the standard library in Rust before 1.50.0, read_to_end() does not  ...)
 	- rustc <unfixed> (bug #986803)
 	[bullseye] - rustc <no-dsa> (Minor issue)
 	[buster] - rustc <no-dsa> (Minor issue)
+	[stretch] - rustc <no-dsa> (Minor issue)
 	NOTE: https://github.com/rust-lang/rust/issues/80894
 	NOTE: https://github.com/rust-lang/rust/pull/80895
 CVE-2021-28874 (SerenityOS fixed as of c9f25bca048443e317f1994ba9b106f2386688c3 contai ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9e18be3adf5221e97d836ed4a5cfa86f90b0ad8e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9e18be3adf5221e97d836ed4a5cfa86f90b0ad8e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210519/7abcc464/attachment.htm>


More information about the debian-security-tracker-commits mailing list