[Git][security-tracker-team/security-tracker][master] CVE-2021-21897/librecad: leave unfixed but mark unimportant

[Sylvain Beucler (@beuc)]

Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4bc77255 by Sylvain Beucler at 2022-08-03T20:48:10+02:00
CVE-2021-21897/librecad: leave unfixed but mark unimportant
following input from jmm and carnil in #1010349

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -110344,7 +110344,7 @@ CVE-2021-21897 (A code execution vulnerability exists in the DL_Dxf::handleLWPol
 	[buster] - dxflib <no-dsa> (Minor issue)
 	[stretch] - dxflib <no-dsa> (Minor issue)
 	- horizon-eda <unfixed> (bug #1010348)
-	- librecad <not-affected> (bug #1010349)
+	- librecad <unfixed> (unimportant; bug #1010349)
 	NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2021-1346
 	NOTE: https://github.com/qcad/qcad/commit/1eeffc5daf5a06cf6213ffc19e95923cdebb2eb8
 CVE-2021-21896 (A directory traversal vulnerability exists in the Web Manager FsBrowse ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4bc772550b9d330d7b8b9570b6f984bf93a29bb3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4bc772550b9d330d7b8b9570b6f984bf93a29bb3
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220803/0b18a261/attachment.htm>