[Git][security-tracker-team/security-tracker][master] NFU

Moritz Muehlenhoff (@jmm) jmm at debian.org
Mon Nov 22 12:09:05 GMT 2021 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
197cacb9 by Moritz Muehlenhoff at 2021-11-22T13:08:17+01:00
NFU

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2268,6 +2268,7 @@ CVE-2021-3942
 	RESERVED
 CVE-2021-43557
 	RESERVED
+	NOT-FOR-US: Apache Apisix
 CVE-2021-3941
 	RESERVED
 	- openexr <unfixed>
@@ -22771,22 +22772,22 @@ CVE-2021-35940 (An out-of-bounds array read in the apr_time_exp*() functions was
 CVE-2021-35939 [checks for unsafe symlinks are not performed for intermediary directories]
 	RESERVED
 	- rpm <unfixed> (bug #990543)
-	[bullseye] - rpm <no-dsa> (Minor issue)
-	[buster] - rpm <no-dsa> (Minor issue)
+	[bullseye] - rpm <ignored> (Minor issue)
+	[buster] - rpm <ignored> (Minor issue)
 	[stretch] - rpm <no-dsa> (Minor issue)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1964129
 CVE-2021-35938 [races with chown/chmod/capabilities calls during installation]
 	RESERVED
 	- rpm <unfixed> (bug #990543)
-	[bullseye] - rpm <no-dsa> (Minor issue)
-	[buster] - rpm <no-dsa> (Minor issue)
+	[bullseye] - rpm <ignored> (Minor issue)
+	[buster] - rpm <ignored> (Minor issue)
 	[stretch] - rpm <no-dsa> (Minor issue)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1964114
 CVE-2021-35937 [TOCTOU race in checks for unsafe symlinks]
 	RESERVED
 	- rpm <unfixed> (bug #990543)
-	[bullseye] - rpm <no-dsa> (Minor issue)
-	[buster] - rpm <no-dsa> (Minor issue)
+	[bullseye] - rpm <ignored> (Minor issue)
+	[buster] - rpm <ignored> (Minor issue)
 	[stretch] - rpm <no-dsa> (Minor issue)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1964125
 CVE-2021-35936 (If remote logging is not used, the worker (in the case of CeleryExecut ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/197cacb9c2e062a56af7d5b7b0697c48284c9309

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/197cacb9c2e062a56af7d5b7b0697c48284c9309
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211122/697435a4/attachment.htm>

More information about the debian-security-tracker-commits mailing list