[Git][security-tracker-team/security-tracker][master] Add CVE-2016-20011/libgrss

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed May 26 09:34:49 BST 2021



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ab53328a by Salvatore Bonaccorso at 2021-05-26T10:34:19+02:00
Add CVE-2016-20011/libgrss

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -32,7 +32,9 @@ CVE-2021-33566
 CVE-2021-33565
 	RESERVED
 CVE-2016-20011 (libgrss through 0.7.0 fails to perform TLS certificate verification wh ...)
-	TODO: check
+	- libgrss <unfixed>
+	NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=772647
+	NOTE: https://gitlab.gnome.org/GNOME/libgrss/-/issues/4
 CVE-2021-3565 [during tpm2_import command invocation a fixed AES wrapping key is used]
 	RESERVED
 	- tpm2-tools <unfixed>



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ab53328a6cbd939a164f32788d99f14084732566

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ab53328a6cbd939a164f32788d99f14084732566
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210526/992910bc/attachment-0001.htm>


More information about the debian-security-tracker-commits mailing list