diff options
author | Salvatore Bonaccorso <carnil@debian.org> | 2021-09-16 20:55:05 +0200 |
---|---|---|
committer | Salvatore Bonaccorso <carnil@debian.org> | 2021-09-16 20:55:05 +0200 |
commit | b9b772c4372bd6d9bff60aa0f9029ff5b2df07b0 (patch) | |
tree | 9b41aa3aee0503e592282520e0244743562d06a6 | |
parent | 5b528d8bfdd19df3afeaaf96c1a129a86e3288ce (diff) |
Mark three vim issues as no-dsa for bullseye and buster
-rw-r--r-- | data/CVE/list | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/data/CVE/list b/data/CVE/list index 91daab0a74..f9ff822505 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -912,6 +912,8 @@ CVE-2021-3797 (hestiacp is vulnerable to Use of Wrong Operator in String Compari NOT-FOR-US: Hestia Control Panel CVE-2021-3796 (vim is vulnerable to Use After Free ...) - vim <unfixed> (bug #994497) + [bullseye] - vim <no-dsa> (Minor issue) + [buster] - vim <no-dsa> (Minor issue) NOTE: https://huntr.dev/bounties/ab60b7f3-6fb1-4ac2-a4fa-4d592e08008d/ NOTE: https://github.com/vim/vim/commit/35a9a00afcb20897d462a766793ff45534810dc3 (v8.2.3428) CVE-2021-3795 (semver-regex is vulnerable to Inefficient Regular Expression Complexit ...) @@ -1345,6 +1347,8 @@ CVE-2021-3779 RESERVED CVE-2021-3778 (vim is vulnerable to Heap-based Buffer Overflow ...) - vim <unfixed> (bug #994498) + [bullseye] - vim <no-dsa> (Minor issue) + [buster] - vim <no-dsa> (Minor issue) NOTE: https://huntr.dev/bounties/d9c17308-2c99-4f9f-a706-f7f72c24c273 NOTE: https://github.com/vim/vim/commit/65b605665997fad54ef39a93199e305af2fe4d7f (v8.2.3409) CVE-2021-3777 (nodejs-tmpl is vulnerable to Inefficient Regular Expression Complexity ...) @@ -1729,6 +1733,8 @@ CVE-2021-40515 RESERVED CVE-2021-3770 (vim is vulnerable to Heap-based Buffer Overflow ...) - vim <unfixed> (bug #994076) + [bullseye] - vim <no-dsa> (Minor issue) + [buster] - vim <no-dsa> (Minor issue) NOTE: https://huntr.dev/bounties/016ad2f2-07c1-4d14-a8ce-6eed10729365/ NOTE: Fixed by: https://github.com/vim/vim/commit/b7081e135a16091c93f6f5f7525a5c58fb7ca9f9 (v8.2.3402) NOTE: Followup fix for introduced memory leak: https://github.com/vim/vim/commit/2ddb89f8a94425cda1e5491efc80c1ccccb6e08e (v8.2.3403) |