Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a99216a4 by Chris Lamb at 2022-04-28T08:49:54-07:00
Triage CVE-2021-42778, CVE-2021-42779, CVE-2021-42780, CVE-2021-42781 &
CVE-2021-42782 in opensc for stretch LTS.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -35714,6 +35714,7 @@ CVE-2021-42782 (Stack buffer overflow issues were found
in Opensc before version
- opensc 0.22.0-1
[bullseye] - opensc <no-dsa> (Minor issue)
[buster] - opensc <no-dsa> (Minor issue)
+ [stretch] - opensc <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2016448
NOTE:
https://github.com/OpenSC/OpenSC/commit/1252aca9f10771ef5ba8405e73cf2da50827958f
(0.22.0-rc1)
NOTE:
https://github.com/OpenSC/OpenSC/commit/456ac566938a1da774db06126a2fa6c0cba514b3
(0.22.0)
@@ -35724,6 +35725,7 @@ CVE-2021-42781 (Heap buffer overflow issues were found
in Opensc before version
- opensc 0.22.0-1
[bullseye] - opensc <no-dsa> (Minor issue)
[buster] - opensc <no-dsa> (Minor issue)
+ [stretch] - opensc <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2016439
NOTE:
https://github.com/OpenSC/OpenSC/commit/05648b0604bf3e498e8d42dff3c6e7c56a5bf749
(0.22.0-rc1)
NOTE:
https://github.com/OpenSC/OpenSC/commit/17d8980cde7be597afc366b7e311d0d7cadcb1f4
(0.22.0-rc1)
@@ -35734,6 +35736,7 @@ CVE-2021-42780 (A use after return issue was found in
Opensc before version 0.22
- opensc 0.22.0-1
[bullseye] - opensc <no-dsa> (Minor issue)
[buster] - opensc <no-dsa> (Minor issue)
+ [stretch] - opensc <no-dsa> (Minor issue)
NOTE:
https://github.com/OpenSC/OpenSC/commit/5df913b7f57ad89b9832555d24c08d23a534311e
(0.22.0-rc1)
NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=28383
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2016139
@@ -35741,6 +35744,7 @@ CVE-2021-42779 (A heap use after free issue was found
in Opensc before version 0
- opensc 0.22.0-1
[bullseye] - opensc <no-dsa> (Minor issue)
[buster] - opensc <no-dsa> (Minor issue)
+ [stretch] - opensc <no-dsa> (Minor issue)
NOTE:
https://github.com/OpenSC/OpenSC/commit/1db88374bb7706a115d5c3617c6f16115c33bf27
(0.22.0-rc1)
NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=28843
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2016086
@@ -35748,6 +35752,7 @@ CVE-2021-42778 (A heap double free issue was found in
Opensc before version 0.22
- opensc 0.22.0-1
[bullseye] - opensc <no-dsa> (Minor issue)
[buster] - opensc <no-dsa> (Minor issue)
+ [stretch] - opensc <no-dsa> (Minor issue)
NOTE:
https://github.com/OpenSC/OpenSC/commit/f015746d22d249642c19674298a18ad824db0ed7
(0.22.0-rc1)
NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=28185
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2016083
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a99216a40db3ced8fb321629735a871358fb6896
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a99216a40db3ced8fb321629735a871358fb6896
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
