Utkarsh Gupta pushed to branch master at Debian Security Tracker / security-tracker
Commits: 7b11c04a by Utkarsh Gupta at 2021-02-20T22:59:00+05:30 Add workaround entry for libzstd for stretch - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -1452,10 +1452,12 @@ CVE-2021-26910 (Firejail before 0.9.64.4 allows attackers to bypass intended acc CVE-2021-XXXX [zstd allows for race-opening files being compressed or uncompressed] - libzstd 1.4.8+dfsg-2 (bug #982519) [buster] - libzstd 1.3.8+dfsg-3+deb10u2 + [stretch] - libzstd 1.1.2-1+deb9u1 NOTE: https://github.com/facebook/zstd/issues/2491 CVE-2019-XXXX [zstd adds read permissions to files while being compressed or uncompressed] - libzstd 1.4.8+dfsg-1 (bug #981404) [buster] - libzstd 1.3.8+dfsg-3+deb10u1 + [stretch] - libzstd 1.1.2-1+deb9u1 NOTE: https://github.com/facebook/zstd/issues/1630 CVE-2021-26852 RESERVED View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7b11c04a3eac5134cac58c60a51c7b8ed9ec909c -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7b11c04a3eac5134cac58c60a51c7b8ed9ec909c You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits