[Git][security-tracker-team/security-tracker][master] Update status for CVE-2021-30535/icu
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Nov 25 05:16:41 GMT 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
1f6c742c by Salvatore Bonaccorso at 2021-11-25T06:15:55+01:00
Update status for CVE-2021-30535/icu
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -36451,10 +36451,13 @@ CVE-2021-30535 (Double free in ICU in Google Chrome prior to 91.0.4472.77 allowe
- chromium 93.0.4577.82-1 (bug #990079)
[stretch] - chromium <end-of-life> (see DSA 4562)
- icu 67.1-7
+ [buster] - icu <not-affected> (Vulnerable code introduced later)
[stretch] - icu <not-affected> (Vulnerable code not present)
NOTE: https://bugs.chromium.org/p/chromium/issues/detail?id=1194899 (restricted)
NOTE: Bugfix: https://github.com/unicode-org/icu/pull/1698/commits/e450fa50fc242282551f56b941dc93b9a8a0bcbb
NOTE: Backports: https://chromium-review.googlesource.com/c/chromium/deps/icu/+/2842864
+ NOTE: Introduced by: https://github.com/unicode-org/icu/commit/596647c0c34bf19d90d7c90d4f3827876fef688f (release-66-preview)
+ NOTE: Fixed by: https://github.com/unicode-org/icu/commit/2dc5bea9061b4fb05cd03e21b775dd944a0eb81d
CVE-2021-30534 (Insufficient policy enforcement in iFrameSandbox in Google Chrome prio ...)
- chromium 93.0.4577.82-1 (bug #990079)
[stretch] - chromium <end-of-life> (see DSA 4562)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1f6c742ce17bcb2c45cda0d106067e86ec973030
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1f6c742ce17bcb2c45cda0d106067e86ec973030
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211125/8e158343/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list