From 473b4d476596e9e5655742fe98050b679f988d38 Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Sat, 27 Nov 2021 09:04:17 +0100
Subject: Add CVE-2021-21707/php*

---
 data/CVE/list.2021 | 10 +++++++++-
 1 file changed, 9 insertions(+), 1 deletion(-)

diff --git a/data/CVE/list.2021 b/data/CVE/list.2021
index f91ff9aa55..9a5e6987ea 100644
--- a/data/CVE/list.2021
+++ b/data/CVE/list.2021
@@ -53564,8 +53564,16 @@ CVE-2021-21709
 	RESERVED
 CVE-2021-21708
 	RESERVED
-CVE-2021-21707
+CVE-2021-21707 [special character is breaking the path in xml function]
 	RESERVED
+	- php8.1 8.1.0-1
+	- php8.0 <unfixed>
+	- php7.4 <removed>
+	- php7.3 <removed>
+	- php7.0 <removed>
+	NOTE: Fixed in 8.1.0, 8.0.13, 7.4.26, 7.3.33
+	NOTE: PHP Bug: https://bugs.php.net/79971
+	NOTE: https://github.com/php/php-src/commit/f15f8fc573eb38c3c73e23e0930063a6f6409ed4
 CVE-2021-21706 (In PHP versions 7.3.x below 7.3.31, 7.4.x below 7.4.24 and 8.0.x below ...)
 	- php8.0 <not-affected> (Windows specific issue)
 	- php7.4 <not-affected> (Windows specific issue)
-- 
cgit v1.2.3