Update information for CVE-2021-20297/network-manager

author: Salvatore Bonaccorso <carnil@debian.org> 2021-03-31 09:13:37 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2021-03-31 09:13:37 +0200
commit: 58c4c8f697abdc462b8eb614478154884ac68d78 (patch)
tree: aa4f5623bba97d3b5028740dcd7b0ef8f865f882
parent: 72f1cd656fe0bd161d0c58da16caeefce9a2bb87 (diff)
1 files changed, 5 insertions, 1 deletions
diff --git a/data/CVE/2021.list b/data/CVE/2021.list
index 9bf931146e..5bea967a0e 100644
--- a/data/CVE/2021.list
+++ b/data/CVE/2021.list
@@ -20620,7 +20620,11 @@ CVE-2021-20298
 CVE-2021-20297 [Setting match.path and activating a profiles crashes NetworkManager]
 	RESERVED
 	- network-manager <unfixed>
-	NOTE: https://gitlab.freedesktop.org/NetworkManager/NetworkManager/-/commit/420784e342da4883f6debdfe10cde68507b10d27
+	[buster] - network-manager <not-affected> (Vulnerable code introduced later)
+	[stretch] - network-manager <not-affected> (Vulnerable code introduced later)
+	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1942741 (not yet public)
+	NOTE: Introduced by: https://gitlab.freedesktop.org/NetworkManager/NetworkManager/-/commit/3ced486f4162edcd03ff42fa27535130aff0c86c (1.26-rc2)
+	NOTE: Fixed by: https://gitlab.freedesktop.org/NetworkManager/NetworkManager/-/commit/420784e342da4883f6debdfe10cde68507b10d27
 CVE-2021-20296
 	RESERVED
 	- openexr <unfixed>
author	Salvatore Bonaccorso <carnil@debian.org>	2021-03-31 09:13:37 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2021-03-31 09:13:37 +0200
commit	58c4c8f697abdc462b8eb614478154884ac68d78 (patch)
tree	aa4f5623bba97d3b5028740dcd7b0ef8f865f882
parent	72f1cd656fe0bd161d0c58da16caeefce9a2bb87 (diff)