Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
c021d186 by Salvatore Bonaccorso at 2021-03-20T09:02:10+01:00
Remove notes from CVE-2021-0384
Further investigation by the assigning CNA showed that there is a bug,
but not a security issue here, so the CVE was rejected.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -30237,12 +30237,8 @@ CVE-2021-0386 (In onCreate of UsbConfirmActivity,
there is a possible tapjacking
NOT-FOR-US: Android
CVE-2021-0385 (In createConnectToAvailableNetworkNotification of
ConnectToNetworkNoti ...)
NOT-FOR-US: Android
-CVE-2021-0384 (In read_and_discard_scanlines of jdapistd.c, there is a
possible null ...)
- - libjpeg-turbo 1:2.0.6-4 (bug #985082)
- [buster] - libjpeg-turbo <no-dsa> (Minor issue)
- [stretch] - libjpeg-turbo <postponed> (Minor issue)
- NOTE: https://github.com/libjpeg-turbo/libjpeg-turbo/issues/470
- NOTE:
https://github.com/libjpeg-turbo/libjpeg-turbo/commit/6d2e8837b440ce4d8befd805a5abc0d351028d70
+CVE-2021-0384
+ REJECTED
CVE-2021-0383 (In done of CaptivePortalLoginActivity.java, there is a confused
deputy ...)
NOT-FOR-US: Android
CVE-2021-0382 (In checkSlicePermission of SliceManagerService.java, there is a
possib ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c021d1865d389337df9cd42730b66a826877746b
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c021d1865d389337df9cd42730b66a826877746b
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
