From 0468e9d470d9f179c0feddaa007776a39d4a63c3 Mon Sep 17 00:00:00 2001 From: Salvatore Bonaccorso Date: Tue, 2 Feb 2021 07:22:41 +0100 Subject: Update tracking of llvm-toolchain packages --- data/CVE/list | 6 ++---- data/packages/removed-packages | 1 + 2 files changed, 3 insertions(+), 4 deletions(-) (limited to 'data') diff --git a/data/CVE/list b/data/CVE/list index b17bcff5a7..6dfd252bed 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -97272,9 +97272,7 @@ CVE-2020-0307 (In Settings, there is a possible permission bypass due to an unsa NOT-FOR-US: Android CVE-2020-0306 (In LLVM, there is a possible ineffective stack cookie placement due to ...) - llvm-toolchain-11 - - llvm-toolchain-10 - llvm-toolchain-9 - - llvm-toolchain-8 CVE-2020-0305 (In cdev_get of char_dev.c, there is a possible use-after-free due to a ...) - linux 5.4.13-1 [buster] - linux 4.19.98-1 @@ -145568,10 +145566,10 @@ CVE-2019-2212 (In poisson_distribution of random, there is an out of bounds read - libc++ [stretch] - libc++ (Minor issue) [jessie] - libc++ (Minor issue, Jessie versions of software that uses poisson distribution have low popcon) - - llvm-toolchain-6.0 + - llvm-toolchain-6.0 [buster] - llvm-toolchain-6.0 (Minor issue) [jessie] - llvm-toolchain-6.0 (Minor issue, Jessie versions of software that uses poisson distribution have low popcon) - - llvm-toolchain-8 + - llvm-toolchain-8 NOTE: https://android.googlesource.com/platform/external/libcxx/+/4cebe6f1f01a34546b3b843b5267619a61bd7d39 NOTE: https://android.googlesource.com/platform/external/libcxx/+/8260b5d56f6880a29b57f73b7f4866e47e9e4818 NOTE: https://android.googlesource.com/platform/external/libcxx/+/a16cd9df50f22ccf65cf27eddc0403791116c75a diff --git a/data/packages/removed-packages b/data/packages/removed-packages index 2c49ef4489..5ee39b2f4c 100644 --- a/data/packages/removed-packages +++ b/data/packages/removed-packages @@ -809,3 +809,4 @@ flashplugin-nonfree golang-1.14 postgresql-12 python3.8 +llvm-toolchain-10 -- cgit v1.2.3