diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2022-01-27 08:49:38 +0100 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2022-01-27 08:49:38 +0100 |
| commit | c440bfebfb5d343db781609c6b3cacbd078f84a0 (patch) | |
| tree | 8031e8c3219571d294f8e5fdbc5ef8830e4a685d | |
| parent | 7a8cdd98a43ff7f328453a22c3ef559fe0c86568 (diff) | |
Add CVE-2021-22570/protobuf
| -rw-r--r-- | data/CVE/list.2021 | 5 |
1 files changed, 4 insertions, 1 deletions
diff --git a/data/CVE/list.2021 b/data/CVE/list.2021 index 0f41ca5d6e..c824f23dd3 100644 --- a/data/CVE/list.2021 +++ b/data/CVE/list.2021 @@ -58585,7 +58585,10 @@ CVE-2021-22572 CVE-2021-22571 RESERVED CVE-2021-22570 (Nullptr dereference when a null char is present in a proto symbol. The ...) - TODO: check + [experimental] - protobuf 3.17.1-1 + - protobuf <unfixed> + NOTE: Fixed upstream in v3.15.0: https://github.com/protocolbuffers/protobuf/releases/tag/v3.15.0 + TODO: check details CVE-2021-22569 (An issue in protobuf-java allowed the interleaving of com.google.proto ...) [experimental] - protobuf 3.19.3-1 - protobuf <unfixed> |