Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 5c6e6229 by Salvatore Bonaccorso at 2021-08-01T20:39:32+02:00 Correct source package name for CVE-2021-33900 The issue is in Apache Directory Studio, not Apache Directory Server. >From the initial tracking of apacheds this later one was changed to apache-directory-server without noticing that the actual source affected is apache-directory-studio, which has an ITP. Thanks: Markus Koschany <[email protected]> Fixes: 7adc1d9f0406 ("CVE-2021-33900/apacheds") Fixes: cff955e4f7e3 ("CVE-2021-33900: Track source package name apache-directory-server") - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -8597,7 +8597,7 @@ CVE-2021-33902 CVE-2021-33901 RESERVED CVE-2021-33900 (While investigating DIRSTUDIO-1219 it was noticed that configured Star ...) - - apache-directory-server <unfixed> (bug #991614) + - apache-directory-studio <itp> (bug #733044) NOTE: https://www.openwall.com/lists/oss-security/2021/07/24/1 CVE-2020-36384 (PageLayer before 1.3.5 allows reflected XSS via color settings. ...) NOT-FOR-US: PageLayer View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5c6e6229c1096497d373449fd75f970d33f707bb -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5c6e6229c1096497d373449fd75f970d33f707bb You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
