[Git][security-tracker-team/security-tracker][master] CVE-2021-42700,CVE-2021-42702,CVE-2021-42704/inkscape: add reference

Sylvain Beucler (@beuc) beuc at debian.org
Sat May 28 09:27:22 BST 2022 


Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f134d659 by Sylvain Beucler at 2022-05-28T10:26:21+02:00
CVE-2021-42700,CVE-2021-42702,CVE-2021-42704/inkscape: add reference

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -41913,16 +41913,19 @@ CVE-2021-42705 (PLC Editor Versions 1.3.8 and prior is vulnerable to a stack-bas
 CVE-2021-42704 (Inkscape version 0.19 is vulnerable to an out-of-bounds write, which m ...)
 	- inkscape 1.0-1
 	NOTE: https://www.cisa.gov/uscert/ics/advisories/icsa-22-132-03
+	NOTE: https://bugzilla.suse.com/show_bug.cgi?id=1199774#c1 (locating possible patches)
 CVE-2021-42703 (This vulnerability could allow an attacker to send malicious Javascrip ...)
 	NOT-FOR-US: Advantech
 CVE-2021-42702 (Inkscape version 0.19 can access an uninitialized pointer, which may a ...)
 	- inkscape 1.0-1
 	NOTE: https://www.cisa.gov/uscert/ics/advisories/icsa-22-132-03
+	NOTE: https://bugzilla.suse.com/show_bug.cgi?id=1199774#c1 (locating possible patches)
 CVE-2021-42701 (An attacker could prepare a specially crafted project file that, if op ...)
 	NOT-FOR-US: AzeoTech
 CVE-2021-42700 (Inkscape 0.19 is vulnerable to an out-of-bounds read, which may allow  ...)
 	- inkscape 1.0-1
 	NOTE: https://www.cisa.gov/uscert/ics/advisories/icsa-22-132-03
+	NOTE: https://bugzilla.suse.com/show_bug.cgi?id=1199774#c1 (locating possible patches)
 CVE-2021-42699 (The affected product is vulnerable to cookie information being transmi ...)
 	NOT-FOR-US: AzeoTech
 CVE-2021-42698 (Project files are stored memory objects in the form of binary serializ ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f134d659cbbe770ee8ea3543e94d939df2722e21

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f134d659cbbe770ee8ea3543e94d939df2722e21
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220528/76637eda/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list