[Git][security-tracker-team/security-tracker][master] new rpm issue (concludes external check)
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Thu Sep 30 08:29:28 BST 2021
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
61bbdc25 by Moritz Muehlenhoff at 2021-09-30T09:28:56+02:00
new rpm issue (concludes external check)
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -23405,6 +23405,10 @@ CVE-2020-36327 (Bundler 1.16.0 through 2.2.9 and 2.2.11 through 2.2.16 sometimes
NOTE: https://github.com/rubygems/rubygems/issues/3982
CVE-2021-3521
RESERVED
+ - rpm <unfixed>
+ [bullseye] - rpm <no-dsa> (Minor issue)
+ [buster] - rpm <no-dsa> (Minor issue)
+ NOTE: https://github.com/rpm-software-management/rpm/pull/1788
CVE-2021-3520 (There's a flaw in lz4. An attacker who submits a crafted file to an ap ...)
{DSA-4919-1 DLA-2657-1}
- lz4 1.9.3-2 (bug #987856)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/61bbdc258d4064acc4f626212719d9c7d5c5d6bd
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/61bbdc258d4064acc4f626212719d9c7d5c5d6bd
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210930/67caedf5/attachment.htm>
More information about the debian-security-tracker-commits
mailing list