diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2022-01-01 10:22:03 +0100 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2022-01-01 10:22:03 +0100 |
| commit | efd69c48dd02caf17a6fd5543e647a0927dee0bc (patch) | |
| tree | 240a01761be1db7fafb3c263184a31e8b6aa3098 | |
| parent | 432cd60d3584e9e471e9052a3dab6a51000c7b36 (diff) | |
Add initial tracking for two mdbtools issues
| -rw-r--r-- | data/CVE/2021.list | 8 |
1 files changed, 6 insertions, 2 deletions
diff --git a/data/CVE/2021.list b/data/CVE/2021.list index 8c0537d272..7a74a4c8cf 100644 --- a/data/CVE/2021.list +++ b/data/CVE/2021.list @@ -100,9 +100,13 @@ CVE-2021-45929 (Wasm3 0.5.0 has an out-of-bounds write in CompileBlock (called f CVE-2021-45928 (libjxl before 0.6, as used in libvips 8.11 through 8.11.2 and other pr ...) TODO: check CVE-2021-45927 (MDB Tools (aka mdbtools) 0.9.2 has a stack-based buffer overflow (at 0 ...) - TODO: check + - mdbtools <undetermined> + NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=36187 + TODO: check, possibly fixed in 0.9.3, but unclear fixing commit, related to 9b6b52cc8c5838cffeee9388c04890fe1eb73b52? CVE-2021-45926 (MDB Tools (aka mdbtools) 0.9.2 has a stack-based buffer overflow (at 0 ...) - TODO: check + - mdbtools <undetermined> + NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=35972 + TODO: check, possibly fixed in 0.9.3, but unclear fixing commit, related to 9b6b52cc8c5838cffeee9388c04890fe1eb73b52? CVE-2021-4196 RESERVED CVE-2021-4195 |