[Git][security-tracker-team/security-tracker][master] CVE-2021-42700,2,4 inkscape 1.0-1

Neil Williams (@codehelp) Fri, 20 May 2022 02:46:21 -0700


Neil Williams pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
fe0962d6 by Neil Williams at 2022-05-20T10:45:44+01:00
CVE-2021-42700,2,4 inkscape 1.0-1

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -40080,15 +40080,21 @@ CVE-2021-42706 (This vulnerability could allow an 
attacker to disclose informati
 CVE-2021-42705 (PLC Editor Versions 1.3.8 and prior is vulnerable to a 
stack-based buf ...)
        NOT-FOR-US: PLC Editor
 CVE-2021-42704 (Inkscape version 0.19 is vulnerable to an out-of-bounds write, 
which m ...)
-       TODO: check
+       - inkscape 1.0-1
+       NOTE: https://www.cisa.gov/uscert/ics/advisories/icsa-22-132-03
+       NOTE: typo in CVE - affects Inkscape Version 0.91
 CVE-2021-42703 (This vulnerability could allow an attacker to send malicious 
Javascrip ...)
        NOT-FOR-US: Advantech
 CVE-2021-42702 (Inkscape version 0.19 can access an uninitialized pointer, 
which may a ...)
-       TODO: check
+       - inkscape 1.0-1
+       NOTE: https://www.cisa.gov/uscert/ics/advisories/icsa-22-132-03
+       NOTE: typo in CVE - affects Inkscape Version 0.91
 CVE-2021-42701 (An attacker could prepare a specially crafted project file 
that, if op ...)
        NOT-FOR-US: AzeoTech
 CVE-2021-42700 (Inkscape 0.19 is vulnerable to an out-of-bounds read, which 
may allow  ...)
-       TODO: check
+       - inkscape 1.0-1
+       NOTE: https://www.cisa.gov/uscert/ics/advisories/icsa-22-132-03
+       NOTE: typo in CVE - affects Inkscape Version 0.91
 CVE-2021-42699 (The affected product is vulnerable to cookie information being 
transmi ...)
        NOT-FOR-US: AzeoTech
 CVE-2021-42698 (Project files are stored memory objects in the form of binary 
serializ ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fe0962d6e347326d456eae9be6544a40f8810814

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fe0962d6e347326d456eae9be6544a40f8810814
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] CVE-2021-42700,2,4 inkscape 1.0-1

Reply via email to