[Git][security-tracker-team/security-tracker][master] CVE-2021-23463: Remove todo and add additional commit notes
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Feb 13 08:00:29 GMT 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
83e3a136 by Salvatore Bonaccorso at 2022-02-13T08:59:19+01:00
CVE-2021-23463: Remove todo and add additional commit notes
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -70401,10 +70401,11 @@ CVE-2021-23465
CVE-2021-23464
RESERVED
CVE-2021-23463 (The package com.h2database:h2 from 1.4.198 and before 2.0.202 are vuln ...)
- - h2database <not-affected> (vulnerable method is not supported)
+ - h2database <not-affected> (vulnerable method is not supported; vulnerable code introduced in 1.4.198)
NOTE: https://github.com/h2database/h2database/issues/3195
NOTE: https://github.com/h2database/h2database/pull/3199
- TODO: check, might not affect versions in Debian
+ NOTE: Introduced in: https://github.com/h2database/h2database/commit/1cfd2ffad975b31de3f20711bab19a121bfad20c (version-1.4.198)
+ NOTE: Fixed by: https://github.com/h2database/h2database/commit/d83285fd2e48fb075780ee95badee6f5a15ea7f8 (version-2.0.202)
CVE-2021-23462
RESERVED
CVE-2021-23461
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/83e3a136187911d8966e791d7b588ba14c727fb4
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/83e3a136187911d8966e791d7b588ba14c727fb4
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220213/b461935b/attachment.htm>
More information about the debian-security-tracker-commits
mailing list