[Git][security-tracker-team/security-tracker][master] Adjust tracking for CVE-2021-20191

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sun Jun 2 21:17:40 BST 2024



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f4c3d538 by Salvatore Bonaccorso at 2024-06-02T22:16:35+02:00
Adjust tracking for CVE-2021-20191

The first version in unstable containing the fix was 2.10.7-1, mark this
version as fixed and revert the not-affected status for bullseye.

Fixes: bce1a0d122ef ("Mark bullseye as unaffected by CVE-2021-{20180,20191}")

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -261943,8 +261943,7 @@ CVE-2021-20192
 	REJECTED
 CVE-2021-20191 (A flaw was found in ansible. Credentials, such as secrets, are being d ...)
 	{DLA-3695-1}
-	- ansible 5.4.0-1 (bug #985753)
-	[bullseye] - ansible <not-affected> (vulnerable code not present)
+	- ansible 2.10.7-1 (bug #985753)
 	[stretch] - ansible <end-of-life> (EOL'd for stretch)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1916813
 	NOTE: https://github.com/ansible-collections/cisco.nxos/pull/227



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f4c3d538b3a5254d0bcb6151d1a5e5d0a47b4d5d

-- 
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f4c3d538b3a5254d0bcb6151d1a5e5d0a47b4d5d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240602/0d0c7eaf/attachment.htm>


More information about the debian-security-tracker-commits mailing list