diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2022-01-03 21:18:43 +0100 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2022-01-03 21:18:43 +0100 |
| commit | 29a86cec22a344d30d28404b33d4ea1b9436f729 (patch) | |
| tree | 74613a6f2e97a5400056d7665934728f56021ded | |
| parent | 18882907694ac89b080ab5ede1c18c37c94b7e43 (diff) | |
Remove notes from CVE-2021-45959, withdrawn as it is no security issue
| -rw-r--r-- | data/CVE/list.2021 | 6 |
1 files changed, 0 insertions, 6 deletions
diff --git a/data/CVE/list.2021 b/data/CVE/list.2021 index 456426e546..4815e9d8ba 100644 --- a/data/CVE/list.2021 +++ b/data/CVE/list.2021 @@ -354,12 +354,6 @@ CVE-2021-45960 (In Expat (aka libexpat) before 2.4.3, a left shift by 29 (or mor NOTE: https://github.com/libexpat/libexpat/pull/534 CVE-2021-45959 REJECTED - - fmtlib <unfixed> (unimportant) - NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=36110 - NOTE: https://github.com/fmtlib/fmt/issues/2685 - NOTE: Fixed by: https://github.com/fmtlib/fmt/commit/2038bf61831eb8faede0883965364a974d1350fe - NOTE: The CVE is basically invalid, as the report was one of a series of false positives - NOTE: and the "upstream fix" is effectively a noop. CVE-2021-45958 (UltraJSON (aka ujson) 4.0.2 through 5.0.0 has a stack-based buffer ove ...) - ujson <unfixed> NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=36009 |