summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorSalvatore Bonaccorso <carnil@debian.org>2021-03-05 21:15:21 +0100
committerSalvatore Bonaccorso <carnil@debian.org>2021-03-05 21:15:21 +0100
commitcf1fa3444ca97b48f6df68466ecf8e5711777ca4 (patch)
tree6672af500ae80057129ec89528778ac3bc0db971
parent669473916a9331d0cc1e96412bbc7829b7b794ef (diff)
Add CVE-2021-28041/openssh
-rw-r--r--data/CVE/2021.list6
1 files changed, 5 insertions, 1 deletions
diff --git a/data/CVE/2021.list b/data/CVE/2021.list
index c151d2f4dd..c0fd6c9034 100644
--- a/data/CVE/2021.list
+++ b/data/CVE/2021.list
@@ -1,7 +1,11 @@
CVE-2021-3423
RESERVED
CVE-2021-28041 (ssh-agent in OpenSSH before 8.5 has a double free that may be relevant ...)
- TODO: check
+ - openssh <unfixed>
+ [buster] - openssh <not-affected> (Vulnerable code introduced later)
+ [stretch] - openssh <not-affected> (Vulnerable code introduced later)
+ NOTE: https://www.openwall.com/lists/oss-security/2021/03/03/1
+ NOTE: https://github.com/openssh/openssh-portable/commit/e04fd6dde16de1cdc5a4d9946397ff60d96568db
CVE-2021-28040 (An issue was discovered in OSSEC 3.6.0. An uncontrolled recursion vuln ...)
TODO: check
CVE-2021-28037 (An issue was discovered in the internment crate before 0.4.2 for Rust. ...)

© 2014-2022 Faster IT GmbH | imprint | privacy policy