[Git][security-tracker-team/security-tracker][master] Remove note from CVE-2021-20223

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Nov 12 08:08:37 GMT 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b521d43a by Salvatore Bonaccorso at 2022-11-12T09:07:34+01:00
Remove note from CVE-2021-20223

Further investigation from the assigning CNA showed that this is not a
security issue. Thus the CNA has withdrawn the CVE. Cleanup as well the
cross-reference for DLA 3107-1.

- - - - -


2 changed files:

- data/CVE/list
- data/DLA/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -140448,11 +140448,6 @@ CVE-2021-20224 (An integer overflow issue was discovered in ImageMagick's Export
 	NOTE: https://github.com/ImageMagick/ImageMagick6/commit/553054c1cb1e4e05ec86237afef76a32cd7c464d
 CVE-2021-20223
 	REJECTED
-	{DLA-3107-1}
-	- sqlite3 3.34.0-1
-	NOTE: https://github.com/sqlite/sqlite/commit/d1d43efa4fb0f2098c0e2c5bf2e807c58d5ec05b (version-3.34.0)
-	NOTE: https://sqlite.org/src/info/b7b7bde9b7a03665
-	NOTE: https://www.sqlite.org/forum/forumpost/09609d7e22
 CVE-2021-20222 (A flaw was found in keycloak. The new account console in keycloak can  ...)
 	NOT-FOR-US: Keycloak
 CVE-2021-20221 (An out-of-bounds heap buffer access issue was found in the ARM Generic ...)


=====================================
data/DLA/list
=====================================
@@ -231,7 +231,7 @@
 	{CVE-2022-1049}
 	[buster] - pcs 0.10.1-2+deb10u1
 [13 Sep 2022] DLA-3107-1 sqlite3 - security update
-	{CVE-2020-35525 CVE-2020-35527 CVE-2021-20223}
+	{CVE-2020-35525 CVE-2020-35527}
 	[buster] - sqlite3 3.27.2-3+deb10u2
 [13 Sep 2022] DLA-3106-1 python-oslo.utils - security update
 	{CVE-2022-0718}



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b521d43a9d1b65cbeae13230f357330f857967d4

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b521d43a9d1b65cbeae13230f357330f857967d4
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221112/43d84bb8/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list