[Git][security-tracker-team/security-tracker][master] Add CVE-2021-3782/wayland

Fri Oct 7 09:28:37 BST 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f6b0cf1f by Salvatore Bonaccorso at 2022-10-07T10:27:48+02:00
Add CVE-2021-3782/wayland

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -76734,7 +76734,9 @@ CVE-2021-3784
 CVE-2021-3783 (yourls is vulnerable to Improper Neutralization of Input During Web Pa ...)
 	NOT-FOR-US: yourls
 CVE-2021-3782 (An internal reference count is held on the buffer pool, incremented ev ...)
-	TODO: check
+	- wayland 1.21.0-1
+	NOTE: https://gitlab.freedesktop.org/wayland/wayland/-/issues/224
+	NOTE: https://gitlab.freedesktop.org/wayland/wayland/-/commit/b19488c7154b902354cb26a27f11415d7799b0b2 (1.20.91)
 CVE-2021-3781 (A trivial sandbox (enabled with the `-dSAFER` option) escape flaw was  ...)
 	{DSA-4972-1}
 	- ghostscript 9.53.3~dfsg-8 (bug #994011)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f6b0cf1fe9052a66b5265b72f8a2247eb11d4587

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f6b0cf1fe9052a66b5265b72f8a2247eb11d4587
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221007/eaead619/attachment-0001.htm>
