From 4a137239f349a58c435709def90d1189dd176e9a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?S=C3=A9bastien=20Delafond?= <sdelafond@gmail.com>
Date: Wed, 10 Feb 2021 08:04:39 +0100
Subject: libzstd's #981404 is fixed in buster in 1.3.8+dfsg-3+deb10u

---
 data/CVE/2019.list | 1 +
 1 file changed, 1 insertion(+)

(limited to 'data/CVE/2019.list')

diff --git a/data/CVE/2019.list b/data/CVE/2019.list
index 1a2b4d6d79..e1d057a04d 100644
--- a/data/CVE/2019.list
+++ b/data/CVE/2019.list
@@ -1,5 +1,6 @@
 CVE-2019-XXXX [zstd adds read permissions to files while being compressed or uncompressed]
 	- libzstd 1.4.8+dfsg-1 (bug #981404)
+	[buster] - libzstd 1.3.8+dfsg-3+deb10u
 	NOTE: https://github.com/facebook/zstd/issues/1630
 CVE-2019-25018 (In the rcp client in MIT krb5-appl through 1.0.3, malicious servers co ...)
 	- krb5-appl <removed>
-- 
cgit v1.2.3