Add CVE-2021-3323{5,6}/htmldoc

author: Salvatore Bonaccorso <carnil@debian.org> 2022-08-16 10:44:25 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2022-08-16 10:44:25 +0200
commit: a3729572dfc9ee4a1fba0201f514fb91dc16d43a (patch)
tree: bdaab1312d197881248363908071deb5f37cb7d4
parent: a48e5a35a62e9db3a03d996a1b541cd56d848a07 (diff)
1 files changed, 11 insertions, 2 deletions
diff --git a/data/CVE/list b/data/CVE/list
index b0d01606eb..9f5eeeb10d 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -84417,9 +84417,18 @@ CVE-2021-33238
 CVE-2021-33237
 	RESERVED
 CVE-2021-33236 (Buffer Overflow vulnerability in write_header in htmldoc through 1.9.1 ...)
-	TODO: check
+	- htmldoc 1.9.12-1 (unimportant)
+	NOTE: https://github.com/michaelrsweet/htmldoc/issues/425
+	NOTE: https://github.com/michaelrsweet/htmldoc/commit/a0014be47d614220db111b360fb6170ef6f3937e (v1.9.12)
+	NOTE: Crash in CLI tool, no security impact
+	NOTE: Duplicate CVE of CVE-2022-34033
+	TODO: clarify duplicate assignment with assigning CNA
 CVE-2021-33235 (Buffer overflow vulnerability in write_node in htmldoc through 1.9.11  ...)
-	TODO: check
+	- htmldoc 1.9.12-1 (unimportant)
+	NOTE: https://github.com/michaelrsweet/htmldoc/issues/426
+	NOTE: https://github.com/michaelrsweet/htmldoc/commit/ee778252faebb721afba5a081dd6ad7eaf20eef3 (v1.9.12)
+	NOTE: Duplicate assignment of CVE-2022-34035
+	TODO: clarify duplicate assignment with assigning CNA
 CVE-2021-33234
 	RESERVED
 CVE-2021-33233
author	Salvatore Bonaccorso <carnil@debian.org>	2022-08-16 10:44:25 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2022-08-16 10:44:25 +0200
commit	a3729572dfc9ee4a1fba0201f514fb91dc16d43a (patch)
tree	bdaab1312d197881248363908071deb5f37cb7d4
parent	a48e5a35a62e9db3a03d996a1b541cd56d848a07 (diff)