[Git][security-tracker-team/security-tracker][master] Add CVE-2021-3756/libmysofa
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Oct 29 21:19:24 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
e43eef7e by Salvatore Bonaccorso at 2021-10-29T22:18:55+02:00
Add CVE-2021-3756/libmysofa
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -7571,7 +7571,9 @@ CVE-2021-3757 (immer is vulnerable to Improperly Controlled Modification of Obje
CVE-2021-40331
RESERVED
CVE-2021-3756 (libmysofa is vulnerable to Heap-based Buffer Overflow ...)
- TODO: check
+ - libmysofa <unfixed>
+ NOTE: https://huntr.dev/bounties/7ca8d9ea-e2a6-4294-af28-70260bb53bc1/
+ NOTE: https://github.com/hoene/libmysofa/commit/890400ebd092c574707d0c132124f8ff047e20e1 (v1.2.1)
CVE-2021-3755
REJECTED
CVE-2021-3754
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e43eef7e63197b35f8c2558e9f62902fbfb81b59
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e43eef7e63197b35f8c2558e9f62902fbfb81b59
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211029/36dbf03b/attachment.htm>
More information about the debian-security-tracker-commits
mailing list