[Git][security-tracker-team/security-tracker][master] Update 3 old CVEs for calibre - code removed

Neil Williams (@codehelp) codehelp at debian.org
Mon Nov 1 11:36:37 GMT 2021 


Neil Williams pushed to branch master at Debian Security Tracker / security-tracker


Commits:
084bb13e by Neil Williams at 2021-11-01T11:34:56+00:00
Update 3 old CVEs for calibre - code removed

Prior to 1.10, Debian packaging removed the vulnerable code
(described in bug #584915), it was then removed upstream.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -422603,11 +422603,14 @@ CVE-2011-4127 (The Linux kernel before 3.2.2 does not properly restrict SG_IO io
 	- libguestfs 1:1.14.8-1
 	- linux-2.6 <removed>
 CVE-2011-4126 (Race condition issues were found in Calibre at devices/linux_mount_hel ...)
-	TODO: check
+	- calibre 0.6.54+dfsg-1 (bug #584915)
+	NOTE: Vulnerable code removed upstream at version 1.10, removed by Debian packaging prior to that.
 CVE-2011-4125 (A untrusted search path issue was found in Calibre at devices/linux_mo ...)
-	TODO: check
+	- calibre 0.6.54+dfsg-1 (bug #584915)
+	NOTE: Vulnerable code removed upstream at version 1.10, removed by Debian packaging prior to that.
 CVE-2011-4124 (Input validation issues were found in Calibre at devices/linux_mount_h ...)
-	TODO: check
+	- calibre 0.6.54+dfsg-1 (bug #584915)
+	NOTE: Vulnerable code removed upstream at version 1.10, removed by Debian packaging prior to that.
 CVE-2011-4123
 	REJECTED
 CVE-2011-4122 (Directory traversal vulnerability in openpam_configure.c in OpenPAM be ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/084bb13e5321d8f27f6b241824abc7a41d82605a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/084bb13e5321d8f27f6b241824abc7a41d82605a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211101/1af023e1/attachment.htm>

More information about the debian-security-tracker-commits mailing list