[Git][security-tracker-team/security-tracker][master] Directly reference CVE entries for two apache2 issues
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Oct 5 19:40:09 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0582583b by Salvatore Bonaccorso at 2021-10-05T20:39:36+02:00
Directly reference CVE entries for two apache2 issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -533,7 +533,7 @@ CVE-2021-41773
[bullseye] - apache2 <not-affected> (Vulnerable code not present, only affects 2.4.49)
[buster] - apache2 <not-affected> (Vulnerable code not present, only affects 2.4.49)
[stretch] - apache2 <not-affected> (Vulnerable code not present, only affects 2.4.49)
- NOTE: https://downloads.apache.org/httpd/CHANGES_2.4.50
+ NOTE: https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2021-41773
NOTE: https://www.openwall.com/lists/oss-security/2021/10/05/2
CVE-2021-3839
RESERVED
@@ -1096,7 +1096,7 @@ CVE-2021-41524
[bullseye] - apache2 <not-affected> (Vulnerable code not present, only affects 2.4.49)
[buster] - apache2 <not-affected> (Vulnerable code not present, only affects 2.4.49)
[stretch] - apache2 <not-affected> (Vulnerable code not present, only affects 2.4.49)
- NOTE: https://downloads.apache.org/httpd/CHANGES_2.4.50
+ NOTE: https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2021-41524
NOTE: https://www.openwall.com/lists/oss-security/2021/10/05/1
CVE-2021-3819 (firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF) ...)
NOT-FOR-US: firefly-iii
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0582583ba43d01a69c981c5cc78d4092a0eee6b8
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0582583ba43d01a69c981c5cc78d4092a0eee6b8
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211005/df3a42f2/attachment.htm>
More information about the debian-security-tracker-commits
mailing list