Add CVE-2021-20718/libapache2-mod-auth-openidc

author: Salvatore Bonaccorso <carnil@debian.org> 2021-05-22 10:32:18 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2021-05-22 10:32:40 +0200
commit: f9cd2d02b4cfed9ff3c8419a4bcc6f0ab67efe58 (patch)
tree: e7f646bc27778829342f3fcdbaf2c4d9aeb963a3
parent: 92bb1713c1fcb97f0f1edd5d49d98c5db1becb77 (diff)
1 files changed, 2 insertions, 1 deletions
diff --git a/data/CVE/list.2021 b/data/CVE/list.2021
index a87bd2378f..a827cf4be4 100644
--- a/data/CVE/list.2021
+++ b/data/CVE/list.2021
@@ -29057,7 +29057,8 @@ CVE-2021-20720 (SQL injection vulnerability in the KonaWiki2 versions prior to 2
 CVE-2021-20719 (RFNTPS firmware versions System_01000004 and earlier, and Web_01000004 ...)
 	NOT-FOR-US: RFNTPS firmware
 CVE-2021-20718 (mod_auth_openidc 2.4.0 to 2.4.7 allows a remote attacker to cause a de ...)
-	TODO: check
+	- libapache2-mod-auth-openidc <unfixed>
+	NOTE: https://github.com/zmartzone/mod_auth_openidc/commit/5ef1b0a74208fcb43a16795d0afc94c3d54cd120
 CVE-2021-20717 (Cross-site scripting vulnerability in EC-CUBE 4.0.0 to 4.0.5 allows a  ...)
 	NOT-FOR-US: EC-CUBE
 CVE-2021-20716 (Hidden functionality in multiple Buffalo network devices (BHR-4RV firm ...)
author	Salvatore Bonaccorso <carnil@debian.org>	2021-05-22 10:32:18 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2021-05-22 10:32:40 +0200
commit	f9cd2d02b4cfed9ff3c8419a4bcc6f0ab67efe58 (patch)
tree	e7f646bc27778829342f3fcdbaf2c4d9aeb963a3
parent	92bb1713c1fcb97f0f1edd5d49d98c5db1becb77 (diff)