[Git][security-tracker-team/security-tracker][master] buster/bullseye triage
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Wed Nov 24 10:00:34 GMT 2021
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0b4ea1d4 by Moritz Muehlenhoff at 2021-11-24T09:36:30+01:00
buster/bullseye triage
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2929,6 +2929,8 @@ CVE-2021-43399
RESERVED
CVE-2021-43398 (Crypto++ (aka Cryptopp) 8.6.0 and earlier contains a timing leakage in ...)
- libcrypto++ <unfixed> (bug #1000227)
+ [bullseye] - libcrypto++ <no-dsa> (Minor issue)
+ [buster] - libcrypto++ <no-dsa> (Minor issue)
NOTE: https://github.com/weidai11/cryptopp/issues/1080
CVE-2021-43397 (LiquidFiles before 3.6.3 allows remote attackers to elevate their priv ...)
NOT-FOR-US: LiquidFiles
@@ -19126,6 +19128,8 @@ CVE-2021-37593 (PEEL Shopping version 9.4.0 allows remote SQL injection. A publi
NOT-FOR-US: PEEL Shopping
CVE-2021-37592 (Suricata before 5.0.8 and 6.x before 6.0.4 allows TCP evasion via a cl ...)
- suricata 1:6.0.4-1
+ [bullseye] - suricata <no-dsa> (Minor issue)
+ [buster] - suricata <no-dsa> (Minor issue)
NOTE: https://forum.suricata.io/t/suricata-6-0-4-and-5-0-8-released/1942
NOTE: https://redmine.openinfosecfoundation.org/issues/4569 (not public)
CVE-2021-37591
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0b4ea1d4c378f2c21103bd762c5e3c60b692d046
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0b4ea1d4c378f2c21103bd762c5e3c60b692d046
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211124/95fe4596/attachment.htm>
More information about the debian-security-tracker-commits
mailing list