[Git][security-tracker-team/security-tracker][master] Add upstream tag information for commits for CVE-2021-28650

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sun Jan 19 07:31:38 GMT 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f223f878 by Salvatore Bonaccorso at 2025-01-19T08:31:06+01:00
Add upstream tag information for commits for CVE-2021-28650

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -301854,11 +301854,11 @@ CVE-2021-28650 (autoar-extractor.c in GNOME gnome-autoar before 0.3.1, as used b
 	[buster] - gnome-autoar <not-affected> (Incomplete fix for CVE-2020-36241 not applied)
 	[stretch] - gnome-autoar <not-affected> (Incomplete fix for CVE-2020-36241 not applied)
 	NOTE: https://gitlab.gnome.org/GNOME/gnome-autoar/-/issues/12
-	NOTE: Fixed by: https://gitlab.gnome.org/GNOME/gnome-autoar/-/commit/8109c368c6cfdb593faaf698c2bf5da32bb1ace4
+	NOTE: Fixed by: https://gitlab.gnome.org/GNOME/gnome-autoar/-/commit/8109c368c6cfdb593faaf698c2bf5da32bb1ace4 (0.3.1)
 	NOTE: Issue exists because of an incomplete fix for CVE-2020-36241.
 	NOTE: Two followup/regression patches:
-	NOTE: https://gitlab.gnome.org/GNOME/gnome-autoar/-/commit/135053d5d3a0320891cf2e2ad4684b648bb46fc8
-	NOTE: https://gitlab.gnome.org/GNOME/gnome-autoar/-/commit/b9590ab77b70e74e9deffd2af6c32908dc3c5aaf
+	NOTE: https://gitlab.gnome.org/GNOME/gnome-autoar/-/commit/135053d5d3a0320891cf2e2ad4684b648bb46fc8 (0.3.3)
+	NOTE: https://gitlab.gnome.org/GNOME/gnome-autoar/-/commit/b9590ab77b70e74e9deffd2af6c32908dc3c5aaf (0.3.3)
 CVE-2021-28649 (An incorrect permission vulnerability in the product installer for Tre ...)
 	NOT-FOR-US: Trend Micro
 CVE-2021-28648 (Trend Micro Antivirus for Mac 2020 v10.5 and 2021 v11 (Consumer) is vu ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f223f8783c5eeef7ea5e3c62b92d680368eff260

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f223f8783c5eeef7ea5e3c62b92d680368eff260
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250119/646db7ef/attachment.htm>

More information about the debian-security-tracker-commits mailing list