[Git][security-tracker-team/security-tracker][master] Update status for CVE-2021-3981/grub2

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Nov 15 20:16:49 GMT 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e26a80cc by Salvatore Bonaccorso at 2022-11-15T21:15:45+01:00
Update status for CVE-2021-3981/grub2

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -76129,12 +76129,11 @@ CVE-2021-3982 (Linux distributions using CAP_SYS_NICE for gnome-shell may be exp
 	NOTE: https://gitlab.gnome.org/GNOME/gnome-shell/-/issues/2284
 CVE-2021-3981 (A flaw in grub2 was found where its configuration file, known as grub. ...)
 	- grub2 <unfixed> (bug #1001414)
-	[bullseye] - grub2 <not-affected> (Vulnerable code introduced later)
-	[buster] - grub2 <not-affected> (Vulnerable code introduced later)
 	[stretch] - grub2 <not-affected> (Vulnerable code introduced later)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2024170
 	NOTE: Introduced by: https://git.savannah.gnu.org/gitweb/?p=grub.git;a=commit;h=ab2e53c8a196a595e50f1c836bf756b9db1ae68d (grub-2.06-rc1)
 	NOTE: https://lists.gnu.org/archive/html/grub-devel/2021-12/msg00013.html
+	NOTE: Fixed by: https://git.savannah.gnu.org/gitweb/?p=grub.git;a=commit;h=0adec29674561034771c13e446069b41ef41e4d4
 CVE-2021-3980 (elgg is vulnerable to Exposure of Private Personal Information to an U ...)
 	- elgg <itp> (bug #526197)
 CVE-2021-3979 (A key length flaw was found in Red Hat Ceph Storage. An attacker can e ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e26a80cc34cd16e5c118dff0598c104d1f29dc6c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e26a80cc34cd16e5c118dff0598c104d1f29dc6c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221115/06f638b5/attachment.htm>

More information about the debian-security-tracker-commits mailing list