Thorsten Alteholz pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
00abaa6f by Thorsten Alteholz at 2021-06-29T23:45:52+02:00
CVE-2021-28421 fixed in recent upload
- - - - -
4183b593 by Thorsten Alteholz at 2021-06-29T23:46:32+02:00
Reserve DLA-2697-1 for fluidsynth
- - - - -
2 changed files:
- data/CVE/list
- data/DLA/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -17680,7 +17680,6 @@ CVE-2021-28422
CVE-2021-28421 (FluidSynth 2.1.7 contains a use after free vulnerability in
sfloader/f ...)
- fluidsynth 2.1.7-1.1 (bug #987168)
[buster] - fluidsynth 1.1.11-1+deb10u1
- [stretch] - fluidsynth <postponed> (Minor issue; can be fixed in next
update)
NOTE: https://github.com/FluidSynth/fluidsynth/issues/808
NOTE: https://github.com/FluidSynth/fluidsynth/pull/810
CVE-2021-28420 (A cross-site scripting (XSS) issue in Seo Panel 4.8.0 allows
remote at ...)
=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[29 Jun 2021] DLA-2697-1 fluidsynth - security update
+ {CVE-2021-28421}
+ [stretch] - fluidsynth 1.1.6-4+deb9u1
[29 Jun 2021] DLA-2696-1 libjdom2-java - security update
{CVE-2021-33813}
[stretch] - libjdom2-java 2.0.6-1+deb9u1
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/c322d3734eb032f45be0d142ee9c135e8d6fb8ca...4183b5931e9b1f3235451c36d71d4e2d6e9e3be5
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/c322d3734eb032f45be0d142ee9c135e8d6fb8ca...4183b5931e9b1f3235451c36d71d4e2d6e9e3be5
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
