[Git][security-tracker-team/security-tracker][master] openssh unimportant

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
19a5ad02 by Moritz Muehlenhoff at 2021-09-16T16:13:28+02:00
openssh unimportant

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -37,10 +37,9 @@ CVE-2021-41286
 CVE-2021-3804
 	RESERVED
 CVE-2016-20012 (OpenSSH through 8.7 allows remote attackers, who have a suspicion that ...)
-	- openssh <unfixed>
-	[bullseye] - openssh <no-dsa> (Minor issue)
-	[buster] - openssh <no-dsa> (Minor issue)
+	- openssh <unfixed> (unimportant)
 	NOTE: https://github.com/openssh/openssh-portable/pull/270
+	NOTE: Negligible impact, not treated as a security issue by upstream
 CVE-2021-41285
 	RESERVED
 CVE-2021-41284
@@ -8569,7 +8568,7 @@ CVE-2021-37540 (In JetBrains Hub before 2021.1.13262, a potentially insufficient
 CVE-2021-37539
 	RESERVED
 CVE-2021-3666 (body-parser-xml is vulnerable to Improperly Controlled Modification of ...)
-	NOT-FOR-US: Node nody-parser-xml
+	NOT-FOR-US: Node body-parser-xml
 CVE-2021-37576 (arch/powerpc/kvm/book3s_rtas.c in the Linux kernel through 5.13.5 on t ...)
 	- linux <unfixed>
 	[stretch] - linux <ignored> (powerpc architectures not included in LTS)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/19a5ad02e81814623ca459f292096493020fd4cb

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/19a5ad02e81814623ca459f292096493020fd4cb
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210916/add6f860/attachment.htm>