From a314a0e1fbaba95028cb8acd93b0c19e1484d933 Mon Sep 17 00:00:00 2001 From: Thorsten Alteholz Date: Tue, 16 Nov 2021 23:40:59 +0100 Subject: CVEs of atftp postponed until now --- data/CVE/2020.list | 1 - data/CVE/2021.list | 1 - 2 files changed, 2 deletions(-) diff --git a/data/CVE/2020.list b/data/CVE/2020.list index 11e270a1f9..a0693fc0da 100644 --- a/data/CVE/2020.list +++ b/data/CVE/2020.list @@ -59222,7 +59222,6 @@ CVE-2020-6098 (An exploitable denial of service vulnerability exists in the free CVE-2020-6097 (An exploitable denial of service vulnerability exists in the atftpd da ...) - atftp 0.7.git20120829-3.2 (bug #970066) [buster] - atftp 0.7.git20120829-3.2~deb10u1 - [stretch] - atftp (Minor issue) NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2020-1029 NOTE: https://sourceforge.net/u/peterkaestle/atftp/ci/96409ef3b9ca061f9527cfaafa778105cf15d994/ CVE-2020-6096 (An exploitable signed comparison vulnerability exists in the ARMv7 mem ...) diff --git a/data/CVE/2021.list b/data/CVE/2021.list index 4f86b50055..e385871565 100644 --- a/data/CVE/2021.list +++ b/data/CVE/2021.list @@ -6684,7 +6684,6 @@ CVE-2021-41054 (tftpd_file.c in atftp through 0.7.4 has a buffer overflow becaus - atftp 0.7.git20210915-1 (bug #994895) [bullseye] - atftp 0.7.git20120829-3.3+deb11u1 [buster] - atftp 0.7.git20120829-3.2~deb10u2 - [stretch] - atftp (Minor issue) NOTE: https://sourceforge.net/p/atftp/code/ci/d255bf90834fb45be52decf9bc0b4fb46c90f205/ CVE-2021-3798 [Soft token does not check if an EC key is valid] RESERVED -- cgit v1.2.3