[Git][security-tracker-team/security-tracker][master] Add fix for CVE-2021-3902
Bastien Roucariès (@rouca)
rouca at debian.org
Fri Jul 7 09:49:58 BST 2023
Bastien Roucariès pushed to branch master at Debian Security Tracker / security-tracker
Commits:
3a872591 by Bastien Roucariès at 2023-07-07T08:48:14+00:00
Add fix for CVE-2021-3902
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -127024,6 +127024,7 @@ CVE-2021-3902
[bullseye] - php-dompdf <no-dsa> (Minor issue)
NOTE: https://github.com/dompdf/dompdf/issues/2564
NOTE: https://huntr.dev/bounties/a6071c07-806f-429a-8656-a4742e4191b1
+ NOTE: https://github.com/dompdf/dompdf/commit/7c6d98d0ceaa9c6b85b6cd763191e6fecdea08e4
CVE-2021-3901 (firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF))
NOT-FOR-US: firefly-iii
CVE-2021-3900 (firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF))
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3a872591d207968b69d84f6cc761b46f37633be2
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3a872591d207968b69d84f6cc761b46f37633be2
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230707/743470cc/attachment.htm>
More information about the debian-security-tracker-commits
mailing list