[Git][security-tracker-team/security-tracker][master] CVE-2021-27345,CVE-2021-27347/lrzip: reference fixing commit and upload

Sat Apr 9 14:18:44 BST 2022


Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker


Commits:
33f8c91e by Sylvain Beucler at 2022-04-09T15:18:09+02:00
CVE-2021-27345,CVE-2021-27347/lrzip: reference fixing commit and upload

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -72477,14 +72477,16 @@ CVE-2021-27349 (Advanced Order Export before 3.1.8 for WooCommerce allows XSS, a
 CVE-2021-27348
 	RESERVED
 CVE-2021-27347 (Use after free in lzma_decompress_buf function in stream.c in Irzip 0. ...)
-	- lrzip <unfixed> (unimportant; bug #990583)
+	- lrzip 0.640-1 (unimportant; bug #990583)
 	NOTE: https://github.com/ckolivas/lrzip/issues/165
+	NOTE: https://github.com/ckolivas/lrzip/commit/be884d09e09b00fbddd31b75dc1f4736d72006a8 (v0.640)
 	NOTE: Crash in CLI tool, no security impact
 CVE-2021-27346
 	RESERVED
 CVE-2021-27345 (A null pointer dereference was discovered in ucompthread in stream.c i ...)
-	- lrzip <unfixed> (unimportant)
+	- lrzip 0.640-1 (unimportant)
 	NOTE: https://github.com/ckolivas/lrzip/issues/164
+	NOTE: https://github.com/ckolivas/lrzip/commit/be884d09e09b00fbddd31b75dc1f4736d72006a8 (v0.640)
 	NOTE: Crash in CLI tool, no security impact
 CVE-2021-27344
 	RESERVED



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/33f8c91e66a0008b4bc3d3c5a0533dcd7dce26a3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/33f8c91e66a0008b4bc3d3c5a0533dcd7dce26a3
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220409/2b7f6c3b/attachment.htm>
