diff options
author | Salvatore Bonaccorso <carnil@debian.org> | 2022-01-24 12:20:01 +0100 |
---|---|---|
committer | Salvatore Bonaccorso <carnil@debian.org> | 2022-01-24 12:20:01 +0100 |
commit | e8b69bc992799ca780cb1dd8904c1411ddcdd695 (patch) | |
tree | 810b70257df7a915acc93d3761834460627adc22 | |
parent | e3abe3b3e984b2394e52c4361e3e2711dfbe2b69 (diff) |
Add upstream commits for CVE-2021-3995 and CVE-2021-3996
-rw-r--r-- | data/CVE/2021.list | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/data/CVE/2021.list b/data/CVE/2021.list index 54c8f861e8..d735860b82 100644 --- a/data/CVE/2021.list +++ b/data/CVE/2021.list @@ -6101,6 +6101,7 @@ CVE-2021-3996 [buster] - util-linux <not-affected> (Vulnerable code introduced later) [stretch] - util-linux <not-affected> (Vulnerable code introduced later) NOTE: Introduced by: https://github.com/util-linux/util-linux/commit/5fea669e9ef0a08804f72bb40f859f239f68c30a (v2.34-rc1) + NOTE: Fixed by: https://github.com/util-linux/util-linux/commit/018a10907fa9885093f6d87401556932c2d8bd2b (v2.37.3) NOTE: https://mirrors.edge.kernel.org/pub/linux/utils/util-linux/v2.37/v2.37.3-ReleaseNotes CVE-2021-3995 RESERVED @@ -6108,6 +6109,7 @@ CVE-2021-3995 [buster] - util-linux <not-affected> (Vulnerable code introduced later) [stretch] - util-linux <not-affected> (Vulnerable code introduced later) NOTE: Introduced by: https://github.com/util-linux/util-linux/commit/5fea669e9ef0a08804f72bb40f859f239f68c30a (v2.34-rc1) + NOTE: Fixed by: https://github.com/util-linux/util-linux/commit/f3db9bd609494099f0c1b95231c5dfe383346929 (v2.37.3) NOTE: https://mirrors.edge.kernel.org/pub/linux/utils/util-linux/v2.37/v2.37.3-ReleaseNotes CVE-2021-3994 (django-helpdesk is vulnerable to Improper Neutralization of Input Duri ...) NOT-FOR-US: django-helpdesk |