[Git][security-tracker-team/security-tracker][master] disassociate CVE-2021-43172 from two source packages.
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Wed Feb 22 16:40:07 GMT 2023
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
08f3f48e by Moritz Muehlenhoff at 2023-02-22T17:38:54+01:00
disassociate CVE-2021-43172 from two source packages.
There's no concrete information whether they are actually affected (and all
other issues were addressed across the whole stack back then)
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -103263,10 +103263,6 @@ CVE-2021-43173 (In NLnet Labs Routinator prior to 0.10.2, a validation run can b
NOTE: https://github.com/NLnetLabs/routinator/pull/612
CVE-2021-43172 (NLnet Labs Routinator prior to 0.10.2 happily processes a chain of RRD ...)
- routinator <itp> (bug #929024)
- - fort-validator <unfixed>
- [bullseye] - fort-validator <postponed> (Minor issue, revisit when fixed upstream)
- - cfrpki <unfixed>
- [bullseye] - cfrpki <postponed> (Minor issue, revisit when fixed upstream)
- rpki-client 7.5-1
[bullseye] - rpki-client <ignored> (Fixed versions need more recent libretls)
NOTE: https://www.nlnetlabs.nl/downloads/routinator/CVE-2021-43172_CVE-2021-43173_CVE-2021-43174.txt
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/08f3f48e38fc5ad5b985a9964bb8c0a31e39472e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/08f3f48e38fc5ad5b985a9964bb8c0a31e39472e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230222/1a4fc975/attachment.htm>
More information about the debian-security-tracker-commits
mailing list