diff options
| author | Moritz Muehlenhoff <jmm@debian.org> | 2021-03-03 17:18:44 +0100 |
|---|---|---|
| committer | Moritz Muehlenhoff <jmm@debian.org> | 2021-03-03 17:19:28 +0100 |
| commit | 0013575fc590afdd29a5b7834e59363b410da09d (patch) | |
| tree | de3630af03e215a3c1774ca8ea5a08babc07623b | |
| parent | 1bc052052c43a0fe98f83e74acccdc7aed55db04 (diff) | |
newlib issue affects picolibc
| -rw-r--r-- | data/CVE/list.2021 | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/data/CVE/list.2021 b/data/CVE/list.2021 index 38f3825650..54bd60aa7d 100644 --- a/data/CVE/list.2021 +++ b/data/CVE/list.2021 @@ -1,8 +1,10 @@ CVE-2021-3420 RESERVED - newlib <unfixed> + - picolibc 1.5-1 + NOTE: Fix in picolibc: https://keithp.com/cgit/picolibc.git/commit/newlib/libc/stdlib/mallocr.c?id=aa106b29a6a8a1b0df9e334704292cbc32f2d44e NOTE: https://sourceware.org/git/?p=newlib-cygwin.git;a=commit;h=aa106b29a6a8a1b0df9e334704292cbc32f2d44e - TODO: check libnewlib-nano, picolibc potentially derived code, if not then the CVE does not apply + TODO: check libnewlib-nano, potentially derived code, if not then the CVE does not apply CVE-2021-27917 RESERVED CVE-2021-27916 |