Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
08f3f48e by Moritz Muehlenhoff at 2023-02-22T17:38:54+01:00
disassociate CVE-2021-43172 from two source packages.
There's no concrete information whether they are actually affected (and all
other issues were addressed across the whole stack back then)
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -103263,10 +103263,6 @@ CVE-2021-43173 (In NLnet Labs Routinator prior to
0.10.2, a validation run can b
NOTE: https://github.com/NLnetLabs/routinator/pull/612
CVE-2021-43172 (NLnet Labs Routinator prior to 0.10.2 happily processes a
chain of RRD ...)
- routinator <itp> (bug #929024)
- - fort-validator <unfixed>
- [bullseye] - fort-validator <postponed> (Minor issue, revisit when
fixed upstream)
- - cfrpki <unfixed>
- [bullseye] - cfrpki <postponed> (Minor issue, revisit when fixed
upstream)
- rpki-client 7.5-1
[bullseye] - rpki-client <ignored> (Fixed versions need more recent
libretls)
NOTE:
https://www.nlnetlabs.nl/downloads/routinator/CVE-2021-43172_CVE-2021-43173_CVE-2021-43174.txt
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/08f3f48e38fc5ad5b985a9964bb8c0a31e39472e
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/08f3f48e38fc5ad5b985a9964bb8c0a31e39472e
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
