[Git][security-tracker-team/security-tracker][master] Add CVE-2021-3323{5,6}/htmldoc

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a3729572 by Salvatore Bonaccorso at 2022-08-16T10:44:25+02:00
Add CVE-2021-3323{5,6}/htmldoc

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -84417,9 +84417,18 @@ CVE-2021-33238
 CVE-2021-33237
 	RESERVED
 CVE-2021-33236 (Buffer Overflow vulnerability in write_header in htmldoc through 1.9.1 ...)
-	TODO: check
+	- htmldoc 1.9.12-1 (unimportant)
+	NOTE: https://github.com/michaelrsweet/htmldoc/issues/425
+	NOTE: https://github.com/michaelrsweet/htmldoc/commit/a0014be47d614220db111b360fb6170ef6f3937e (v1.9.12)
+	NOTE: Crash in CLI tool, no security impact
+	NOTE: Duplicate CVE of CVE-2022-34033
+	TODO: clarify duplicate assignment with assigning CNA
 CVE-2021-33235 (Buffer overflow vulnerability in write_node in htmldoc through 1.9.11  ...)
-	TODO: check
+	- htmldoc 1.9.12-1 (unimportant)
+	NOTE: https://github.com/michaelrsweet/htmldoc/issues/426
+	NOTE: https://github.com/michaelrsweet/htmldoc/commit/ee778252faebb721afba5a081dd6ad7eaf20eef3 (v1.9.12)
+	NOTE: Duplicate assignment of CVE-2022-34035
+	TODO: clarify duplicate assignment with assigning CNA
 CVE-2021-33234
 	RESERVED
 CVE-2021-33233



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a3729572dfc9ee4a1fba0201f514fb91dc16d43a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a3729572dfc9ee4a1fba0201f514fb91dc16d43a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220816/c7190232/attachment-0001.htm>