[Git][security-tracker-team/security-tracker][master] NFU

Moritz Muehlenhoff (@jmm) Mon, 22 Nov 2021 04:09:16 -0800


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
197cacb9 by Moritz Muehlenhoff at 2021-11-22T13:08:17+01:00
NFU

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2268,6 +2268,7 @@ CVE-2021-3942
        RESERVED
 CVE-2021-43557
        RESERVED
+       NOT-FOR-US: Apache Apisix
 CVE-2021-3941
        RESERVED
        - openexr <unfixed>
@@ -22771,22 +22772,22 @@ CVE-2021-35940 (An out-of-bounds array read in the 
apr_time_exp*() functions was
 CVE-2021-35939 [checks for unsafe symlinks are not performed for intermediary 
directories]
        RESERVED
        - rpm <unfixed> (bug #990543)
-       [bullseye] - rpm <no-dsa> (Minor issue)
-       [buster] - rpm <no-dsa> (Minor issue)
+       [bullseye] - rpm <ignored> (Minor issue)
+       [buster] - rpm <ignored> (Minor issue)
        [stretch] - rpm <no-dsa> (Minor issue)
        NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1964129
 CVE-2021-35938 [races with chown/chmod/capabilities calls during installation]
        RESERVED
        - rpm <unfixed> (bug #990543)
-       [bullseye] - rpm <no-dsa> (Minor issue)
-       [buster] - rpm <no-dsa> (Minor issue)
+       [bullseye] - rpm <ignored> (Minor issue)
+       [buster] - rpm <ignored> (Minor issue)
        [stretch] - rpm <no-dsa> (Minor issue)
        NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1964114
 CVE-2021-35937 [TOCTOU race in checks for unsafe symlinks]
        RESERVED
        - rpm <unfixed> (bug #990543)
-       [bullseye] - rpm <no-dsa> (Minor issue)
-       [buster] - rpm <no-dsa> (Minor issue)
+       [bullseye] - rpm <ignored> (Minor issue)
+       [buster] - rpm <ignored> (Minor issue)
        [stretch] - rpm <no-dsa> (Minor issue)
        NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1964125
 CVE-2021-35936 (If remote logging is not used, the worker (in the case of 
CeleryExecut ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/197cacb9c2e062a56af7d5b7b0697c48284c9309

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/197cacb9c2e062a56af7d5b7b0697c48284c9309
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] NFU

Reply via email to