diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2021-10-12 14:54:46 +0200 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2021-10-12 14:54:46 +0200 |
| commit | 70014de6a1baa1f23c842fe295f38e434b636026 (patch) | |
| tree | e63dde76845f08c9178a001af33baea7602b3937 | |
| parent | b15468b98050c17502a3088f0bb5788ad2d28afa (diff) | |
CVE-2021-41133/flatpak: Move flatpak to ignored for buster
| -rw-r--r-- | data/CVE/list.2021 | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/data/CVE/list.2021 b/data/CVE/list.2021 index 76c9306462..b6b05e5ebf 100644 --- a/data/CVE/list.2021 +++ b/data/CVE/list.2021 @@ -347,7 +347,7 @@ CVE-2021-3870 RESERVED CVE-2021-41133 (Flatpak is a system for building, distributing, and running sandboxed ...) - flatpak 1.12.1-1 (bug #995935) - [buster] - flatpak <no-dsa> (Not exploitable with Debian buster kernel, intrusive to backport; requires updated libseccomp) + [buster] - flatpak <ignored> (Not exploitable with Debian buster kernel, intrusive to backport; requires updated libseccomp) NOTE: https://github.com/flatpak/flatpak/security/advisories/GHSA-67h7-w3jq-vh4q NOTE: Sourcewise fixed in 1.12.0-1 already, but 1.12.1-1 adds stricter dependency NOTE: to libseccomp 2.5.2 so that CVE-2021-41133 is fully prevented. |