[Git][security-tracker-team/security-tracker][master] Split up listing for CVE for DSA-4985-1

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Oct 14 19:49:06 BST 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2cef4c88 by Salvatore Bonaccorso at 2021-10-14T20:47:48+02:00
Split up listing for CVE for DSA-4985-1

As the set of CVE does not cover both supported suites and
CVE-2021-39200 actually only affects the bullseye version, split it up
this way as workaround to not make the cross-reference think the tracker
that buster was affected and fixed in 5.0.14+dfsg1-0+deb10u1.

- - - - -


2 changed files:

- data/CVE/list
- data/DSA/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -7564,6 +7564,7 @@ CVE-2021-39201 (WordPress is a free and open-source content management system wr
 	NOTE: https://github.com/WordPress/wordpress-develop/security/advisories/GHSA-wh69-25hr-h94v
 CVE-2021-39200 (WordPress is a free and open-source content management system written  ...)
 	- wordpress 5.8.1+dfsg1-1 (bug #994060)
+	[bullseye] - wordpress 5.7.3+dfsg1-0+deb11u1
 	[buster] - wordpress <not-affected> (Vulnerable code introduced later in 5.2)
 	[stretch] - wordpress <not-affected> (Vulnerable code added later)
 	NOTE: https://github.com/WordPress/wordpress-develop/security/advisories/GHSA-m9hc-7v5q-x8q5


=====================================
data/DSA/list
=====================================
@@ -1,5 +1,5 @@
 [14 Oct 2021] DSA-4985-1 wordpress - security update
-	{CVE-2021-39200 CVE-2021-39201}
+	{CVE-2021-39201}
 	[buster] - wordpress 5.0.14+dfsg1-0+deb10u1
 	[bullseye] - wordpress 5.7.3+dfsg1-0+deb11u1
 [12 Oct 2021] DSA-4984-1 flatpak - security update



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2cef4c889bf6ace6f495465fc6d29f4a75b372be

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2cef4c889bf6ace6f495465fc6d29f4a75b372be
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211014/00f42f8f/attachment.htm>

More information about the debian-security-tracker-commits mailing list