diff options
author | Salvatore Bonaccorso <carnil@debian.org> | 2022-01-02 16:07:45 +0100 |
---|---|---|
committer | Salvatore Bonaccorso <carnil@debian.org> | 2022-01-02 16:07:45 +0100 |
commit | 06342afe94034dd6d5274fc0812aa8f71bae3da2 (patch) | |
tree | 3a5089fe91ca27f779de1da2c9dfa8557b5a6c88 | |
parent | 6c233686b3555ca158daa709efb84f2f85be6266 (diff) |
Add Debian bug reference for CVE-2021-43617
-rw-r--r-- | data/CVE/list | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/data/CVE/list b/data/CVE/list index ef6cf94d24..3fbcd3c6f0 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -8264,7 +8264,7 @@ CVE-2021-43618 (GNU Multiple Precision Arithmetic Library (GMP) through 6.2.1 ha NOTE: https://gmplib.org/list-archives/gmp-bugs/2021-September/005077.html NOTE: https://gmplib.org/repo/gmp-6.2/rev/561a9c25298e CVE-2021-43617 (Laravel Framework through 8.70.2 does not sufficiently block the uploa ...) - - php-laravel-framework 6.20.14+dfsg-3 + - php-laravel-framework 6.20.14+dfsg-3 (bug #1002728) [bullseye] - php-laravel-framework <no-dsa> (Can be fixed via point release) NOTE: https://hosein-vita.medium.com/laravel-8-x-image-upload-bypass-zero-day-852bd806019b CVE-2021-3957 (kimai2 is vulnerable to Cross-Site Request Forgery (CSRF) ...) |