automatic update

1 files changed, 5 insertions, 2 deletions

diff --git a/data/CVE/2021.list b/data/CVE/2021.list
index a90c668c21..691ed5c6ef 100644
--- a/data/CVE/2021.list
+++ b/data/CVE/2021.list
@@ -50,8 +50,8 @@ CVE-2021-44221
 	RESERVED
 CVE-2021-4021
 	RESERVED
-CVE-2021-4020
-	RESERVED
+CVE-2021-4020 (janus-gateway is vulnerable to Improper Neutralization of Input During ...)
+	TODO: check
 CVE-2021-4019
 	RESERVED
 CVE-2021-44220
@@ -602,11 +602,13 @@ CVE-2021-3975 [segmentation fault during VM shutdown can lead to vdsm hung]
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2024326
 	NOTE: Fixed by: https://github.com/libvirt/libvirt/commit/1ac703a7d0789e46833f4013a3876c2e3af18ec7 (v7.1.0-rc2)
 CVE-2021-44025 (Roundcube before 1.3.17 and 1.4.x before 1.4.12 is prone to XSS in han ...)
+	{DSA-5013-1}
 	- roundcube 1.5.0+dfsg.1-1 (bug #1000156)
 	NOTE: https://github.com/roundcube/roundcubemail/issues/8193
 	NOTE: https://github.com/roundcube/roundcubemail/commit/faf99bf8a2b7b7562206fa047e8de652861e624a (1.4.12)
 	NOTE: https://github.com/roundcube/roundcubemail/commit/7d7b1dfeff795390b69905ceb63d6391b5b0dfe7 (1.3.17)
 CVE-2021-44026 (Roundcube before 1.3.17 and 1.4.x before 1.4.12 is prone to a potentia ...)
+	{DSA-5013-1}
 	- roundcube 1.5.0+dfsg.1-1 (bug #1000156)
 	NOTE: https://github.com/roundcube/roundcubemail/commit/c8947ecb762d9e89c2091bda28d49002817263f1 (1.4.12)
 	NOTE: https://github.com/roundcube/roundcubemail/commit/ee809bde2dcaa04857a919397808a7296681dcfa (1.3.17)
@@ -6998,6 +7000,7 @@ CVE-2021-41231
 CVE-2021-41230 (Pomerium is an open source identity-aware access proxy. In affected ve ...)
 	NOT-FOR-US: Pomerium
 CVE-2021-41229 (BlueZ is a Bluetooth protocol stack for Linux. In affected versions a  ...)
+	{DLA-2827-1}
 	- bluez <unfixed> (bug #1000262)
 	[bullseye] - bluez <no-dsa> (Minor issue)
 	[buster] - bluez <no-dsa> (Minor issue)