[Git][security-tracker-team/security-tracker][master] Reserve DLA-2988-1 for tinyxml
Thorsten Alteholz (@alteholz)
alteholz at debian.org
Sat Apr 30 23:24:00 BST 2022
Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker
Commits:
781acae4 by Thorsten Alteholz at 2022-05-01T00:23:43+02:00
Reserve DLA-2988-1 for tinyxml
- - - - -
2 changed files:
- data/CVE/list
- data/DLA/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -38554,7 +38554,6 @@ CVE-2021-42260 (TinyXML through 2.6.2 has an infinite loop in TiXmlParsingData::
- tinyxml 2.6.2-6
[bullseye] - tinyxml <no-dsa> (Minor issue)
[buster] - tinyxml <no-dsa> (Minor issue)
- [stretch] - tinyxml <no-dsa> (Minor issue; can be fixed with the next DLA)
NOTE: https://sourceforge.net/p/tinyxml/bugs/141/
NOTE: https://sourceforge.net/p/tinyxml/git/merge-requests/1/
CVE-2021-42259
=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[01 May 2022] DLA-2988-1 tinyxml - security update
+ {CVE-2021-42260}
+ [stretch] - tinyxml 2.6.2-4+deb9u1
[30 Apr 2022] DLA-2987-1 libarchive - security update
{CVE-2019-19221 CVE-2021-23177 CVE-2021-31566}
[stretch] - libarchive 3.2.2-2+deb9u3
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/781acae44130039c4b7c4d377e9757f4312527aa
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/781acae44130039c4b7c4d377e9757f4312527aa
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220430/806b8acf/attachment.htm>
More information about the debian-security-tracker-commits
mailing list