Add three new ledgersmb issues

author: Salvatore Bonaccorso <carnil@debian.org> 2021-08-23 14:15:24 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2021-08-23 14:15:24 +0200
commit: 40b3ebe332edae8f154b035872731bdf2c0e30e1 (patch)
tree: 9154cef967c4f8776ab27053c11b865d397c5be2 /data
parent: 238644b7e18ad6ee8135b4ef9e42524082aa250f (diff)
1 files changed, 9 insertions, 3 deletions
diff --git a/data/CVE/list b/data/CVE/list
index dec11acf7c..39b121b34d 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -534,8 +534,10 @@ CVE-2021-39358 (In GNOME libgfbgraph through 0.2.4, gfbgraph-photo.c does not en
 	- gfbgraph <unfixed>
 	NOTE: https://blogs.gnome.org/mcatanzaro/2021/05/25/reminder-soupsessionsync-and-soupsessionasync-default-to-no-tls-certificate-verification/
 	NOTE: https://gitlab.gnome.org/GNOME/libgfbgraph/-/issues/17
-CVE-2021-3731
+CVE-2021-3731 [Clickjacking vulnerability]
 	RESERVED
+	- ledgersmb <unfixed>
+	NOTE: https://ledgersmb.org/cve-2021-3731-clickjacking
 CVE-2021-39357
 	RESERVED
 CVE-2021-39356
@@ -2835,10 +2837,14 @@ CVE-2021-38296
 	RESERVED
 CVE-2021-38295
 	RESERVED
-CVE-2021-3694
+CVE-2021-3694 [cross-site scripting]
 	RESERVED
-CVE-2021-3693
+	- ledgersmb <unfixed>
+	NOTE: https://ledgersmb.org/cve-2021-3694-cross-site-scripting
+CVE-2021-3693 [cross-site scripting]
 	RESERVED
+	- ledgersmb <unfixed>
+	NOTE: https://ledgersmb.org/cve-2021-3693-cross-site-scripting
 CVE-2021-3692 (yii2 is vulnerable to Use of Predictable Algorithm in Random Number Ge ...)
 	- yii <itp> (bug #597899)
 CVE-2021-38294
author	Salvatore Bonaccorso <carnil@debian.org>	2021-08-23 14:15:24 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2021-08-23 14:15:24 +0200
commit	40b3ebe332edae8f154b035872731bdf2c0e30e1 (patch)
tree	9154cef967c4f8776ab27053c11b865d397c5be2 /data
parent	238644b7e18ad6ee8135b4ef9e42524082aa250f (diff)