diff options
author | Thorsten Alteholz <debian@alteholz.de> | 2021-11-25 23:34:21 +0100 |
---|---|---|
committer | Thorsten Alteholz <debian@alteholz.de> | 2021-11-25 23:34:21 +0100 |
commit | 0baf163f696419d07516a8346e6d0a62c18fc908 (patch) | |
tree | f0f512a2deb0517676ff877754be5505d3a34004 | |
parent | 5c68d1404145aa5f62a38a1c96c7b55d203c2362 (diff) |
mark CVE-2021-44223 as no-dsa for Stretch
-rw-r--r-- | data/CVE/2021.list | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/data/CVE/2021.list b/data/CVE/2021.list index 1257dda9e3..d3de566b44 100644 --- a/data/CVE/2021.list +++ b/data/CVE/2021.list @@ -4,6 +4,7 @@ CVE-2021-44223 (WordPress before 5.8 lacks support for the Update URI plugin hea - wordpress 5.8.1+dfsg1-1 [bullseye] - wordpress <no-dsa> (Minor issue; workarounds/mitigation for older versions can be implemented) [buster] - wordpress <no-dsa> (Minor issue; workarounds/mitigation for older versions can be implemented) + [stretch] - wordpress <no-dsa> (Minor issue; workarounds/mitigation for older versions can be implemented) NOTE: WordPress 5.8 introduces a new "Update URI" plugin header. Further mitigation NOTE: options documented in: NOTE: https://vavkamil.cz/2021/11/25/wordpress-plugin-confusion-update-can-get-you-pwned/ |