mark CVE-2021-42340 as not-affected for Stretch

author: Thorsten Alteholz <debian@alteholz.de> 2021-10-24 17:58:34 +0200
committer: Thorsten Alteholz <debian@alteholz.de> 2021-10-24 17:58:34 +0200
commit: da73cc04b5230e986a705d5b32c5bfecbc61825f (patch)
tree: 33b4d70799abc867704980e6e6a03934cb2ba68f /data
parent: f2693817d87b649c9a6e492ca0cb181c3e71de5c (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/data/CVE/list b/data/CVE/list
index 6b1d94b2ca..49c4184658 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -2135,6 +2135,7 @@ CVE-2021-3885
 CVE-2021-42340 (The fix for bug 63362 present in Apache Tomcat 10.1.0-M1 to 10.1.0-M5, ...)
 	- tomcat9 9.0.54-1
 	- tomcat8 <removed>
+	[stretch] - tomcat8 <not-affected> (Vulnerable code introduced later)
 	NOTE: https://www.openwall.com/lists/oss-security/2021/10/14/1
 	NOTE: https://github.com/apache/tomcat/commit/80f1438ec45e77a07b96419808971838d259eb47 (9.0.54)
 	NOTE: https://github.com/apache/tomcat/commit/d27535bdee95d252418201eb21e9d29476aa6b6a (8.5.72)
author	Thorsten Alteholz <debian@alteholz.de>	2021-10-24 17:58:34 +0200
committer	Thorsten Alteholz <debian@alteholz.de>	2021-10-24 17:58:34 +0200
commit	da73cc04b5230e986a705d5b32c5bfecbc61825f (patch)
tree	33b4d70799abc867704980e6e6a03934cb2ba68f /data
parent	f2693817d87b649c9a6e492ca0cb181c3e71de5c (diff)