[Git][security-tracker-team/security-tracker][master] Mark CVE-2021-41270/symfony as no-dsa
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Nov 25 21:18:23 GMT 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
85cebf8c by Salvatore Bonaccorso at 2021-11-25T22:17:51+01:00
Mark CVE-2021-41270/symfony as no-dsa
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -10223,6 +10223,7 @@ CVE-2021-41271 (Discourse is a platform for community discussion. In affected ve
NOT-FOR-US: Discourse
CVE-2021-41270 (Symfony/Serializer handles serializing and deserializing data structur ...)
- symfony 4.4.19+dfsg-3
+ [bullseye] - symfony <no-dsa> (Minor issue; can be fixed via point release)
[buster] - symfony <not-affected> (Vulnerable code and support for csv_escape_formulas introduced in 4.1)
[stretch] - symfony <not-affected> (Vulnerable code and support for csv_escape_formulas introduced in 4.1)
NOTE: https://github.com/symfony/symfony/security/advisories/GHSA-2xhg-w2g5-w95x
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/85cebf8cb8ae517099a600ee10b6e30aa6592a71
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/85cebf8cb8ae517099a600ee10b6e30aa6592a71
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211125/6d34dbae/attachment.htm>
More information about the debian-security-tracker-commits
mailing list