[Git][security-tracker-team/security-tracker][master] drop CVE-2021-43085, was rejected

Moritz Muehlenhoff (@jmm) jmm at debian.org
Thu Mar 31 13:51:36 BST 2022



Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
229724a6 by Moritz Muehlenhoff at 2022-03-31T14:51:07+02:00
drop CVE-2021-43085, was rejected

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -7773,6 +7773,8 @@ CVE-2022-0676 (Heap-based Buffer Overflow in GitHub repository radareorg/radare2
 	NOTE: https://github.com/radareorg/radare2/commit/c84b7232626badd075caf3ae29661b609164bac6
 CVE-2022-0675 (In certain situations it is possible for an unmanaged rule to exist on ...)
 	- puppet-module-puppetlabs-firewall <unfixed> (bug #1006749)
+	[bullseye] - puppet-module-puppetlabs-firewall <no-dsa> (Minor issue)
+	[buster] - puppet-module-puppetlabs-firewall <no-dsa> (Minor issue)
 	NOTE: https://github.com/puppetlabs/puppetlabs-firewall/pull/1030/commits/2c0047e09be82dd9e1aa4d93c0cb103f83d2a01e (3.4.0)
 	NOTE: https://puppet.com/security/cve/CVE-2022-0675
 	NOTE: https://forge.puppet.com/modules/puppetlabs/firewall/3.4.0
@@ -29935,9 +29937,6 @@ CVE-2021-43086 (ARM astcenc 3.2.0 is vulnerable to Buffer Overflow. When the com
 	NOT-FOR-US: ARM astcenc
 CVE-2021-43085
 	REJECTED
-	- openssl <undetermined>
-	NOTE: https://github.com/openssl/openssl/issues/16873
-	TODO: check, possibly as oulined only in 3.x versions
 CVE-2021-43084 (An SQL Injection vulnerability exists in Dreamer CMS 4.0.0 via the tab ...)
 	NOT-FOR-US: Dreamer CMS
 CVE-2021-3916 (bookstack is vulnerable to Improper Limitation of a Pathname to a Rest ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/229724a65bbe74c6b7f7076b8e98b3de930ffe77

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/229724a65bbe74c6b7f7076b8e98b3de930ffe77
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220331/5df641fe/attachment.htm>


More information about the debian-security-tracker-commits mailing list