Add oss-security reference for CVE-2021-399{5,6}/util-linux

author: Salvatore Bonaccorso <carnil@debian.org> 2022-01-24 14:20:17 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2022-01-24 14:20:17 +0100
commit: 2b8048910945e6536697e91ee2c575797865ed1c (patch)
tree: 9729c19bbb047174fc6a0bc55abdb40049ff8ec8
parent: f5bdc8a3c44d68e610a83a5fdd48ae9b68126af6 (diff)
1 files changed, 2 insertions, 0 deletions
diff --git a/data/CVE/list.2021 b/data/CVE/list.2021
index be877599b8..4f5a965c11 100644
--- a/data/CVE/list.2021
+++ b/data/CVE/list.2021
@@ -6136,6 +6136,7 @@ CVE-2021-3996
 	NOTE: Introduced by: https://github.com/util-linux/util-linux/commit/5fea669e9ef0a08804f72bb40f859f239f68c30a (v2.34-rc1)
 	NOTE: Fixed by: https://github.com/util-linux/util-linux/commit/018a10907fa9885093f6d87401556932c2d8bd2b (v2.37.3)
 	NOTE: https://mirrors.edge.kernel.org/pub/linux/utils/util-linux/v2.37/v2.37.3-ReleaseNotes
+	NOTE: https://www.openwall.com/lists/oss-security/2022/01/24/2
 CVE-2021-3995
 	RESERVED
 	- util-linux <unfixed>
@@ -6144,6 +6145,7 @@ CVE-2021-3995
 	NOTE: Introduced by: https://github.com/util-linux/util-linux/commit/5fea669e9ef0a08804f72bb40f859f239f68c30a (v2.34-rc1)
 	NOTE: Fixed by: https://github.com/util-linux/util-linux/commit/f3db9bd609494099f0c1b95231c5dfe383346929 (v2.37.3)
 	NOTE: https://mirrors.edge.kernel.org/pub/linux/utils/util-linux/v2.37/v2.37.3-ReleaseNotes
+	NOTE: https://www.openwall.com/lists/oss-security/2022/01/24/2
 CVE-2021-3994 (django-helpdesk is vulnerable to Improper Neutralization of Input Duri ...)
 	NOT-FOR-US: django-helpdesk
 CVE-2021-3993 (showdoc is vulnerable to Cross-Site Request Forgery (CSRF) ...)
author	Salvatore Bonaccorso <carnil@debian.org>	2022-01-24 14:20:17 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2022-01-24 14:20:17 +0100
commit	2b8048910945e6536697e91ee2c575797865ed1c (patch)
tree	9729c19bbb047174fc6a0bc55abdb40049ff8ec8
parent	f5bdc8a3c44d68e610a83a5fdd48ae9b68126af6 (diff)