[Git][security-tracker-team/security-tracker][master] Update information for CVE-2021-22901/curl
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed May 26 15:28:55 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
8949db53 by Salvatore Bonaccorso at 2021-05-26T16:28:30+02:00
Update information for CVE-2021-22901/curl
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -25041,7 +25041,7 @@ CVE-2021-22902 [Possible Denial of Service vulnerability in Action Dispatch]
NOTE: Fixed by: https://github.com/rails/rails/commit/446afbd15360a347c923ca775b21a286dcb5297a (v6.0.3.7)
CVE-2021-22901 [TLS session caching disaster]
RESERVED
- - curl <unfixed>
+ - curl <not-affected> (Vulnerable code introduced later)
NOTE: https://curl.se/docs/CVE-2021-22901.html
NOTE: Introduced by: https://github.com/curl/curl/commit/a304051620b92e12b6b1b4e19edc57b34ea332b6 (7.75.0)
NOTE: Fixed by: https://github.com/curl/curl/commit/7f4a9a9b2a49547eae24d2e19bc5c346e9026479 (7.77.0)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8949db53db040c85da86edaf778f36c08e348cc0
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8949db53db040c85da86edaf778f36c08e348cc0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210526/fcc418bc/attachment.htm>
More information about the debian-security-tracker-commits
mailing list