Add CVE-2021-43612/lldpd and track fixed version via unstable

author: Salvatore Bonaccorso <carnil@debian.org> 2021-11-13 21:08:27 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2021-11-13 21:08:27 +0100
commit: e2d84c610c4872d6ca33e89b89868fcadd3d1ee4 (patch)
tree: 56b8545a78608cc6b13952a81ee6ff9ab7907f5f
parent: 387e4e778f00b8761b3abffaf556989dbbaff418 (diff)
1 files changed, 5 insertions, 1 deletions
diff --git a/data/CVE/2021.list b/data/CVE/2021.list
index cdb79aa9b8..b5e0d2df8e 100644
--- a/data/CVE/2021.list
+++ b/data/CVE/2021.list
@@ -4,8 +4,12 @@ CVE-2021-43614
 	RESERVED
 CVE-2021-43613
 	RESERVED
-CVE-2021-43612
+CVE-2021-43612 [crash in SONMP decoder]
 	RESERVED
+	- lldpd 1.0.13-1
+	[bullseye] - lldpd <no-dsa> (Minor issue)
+	[buster] - lldpd <no-dsa> (Minor issue)
+	NOTE: https://github.com/lldpd/lldpd/commit/73d42680fce8598324364dbb31b9bc3b8320adf7 (1.0.13)
 CVE-2021-43611 (Belledonne Belle-sip before 5.0.20 can crash applications such as Linp ...)
 	NOT-FOR-US: Belledonne Belle-sip
 CVE-2021-43610 (Belledonne Belle-sip before 5.0.20 can crash applications such as Linp ...)
author	Salvatore Bonaccorso <carnil@debian.org>	2021-11-13 21:08:27 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2021-11-13 21:08:27 +0100
commit	e2d84c610c4872d6ca33e89b89868fcadd3d1ee4 (patch)
tree	56b8545a78608cc6b13952a81ee6ff9ab7907f5f
parent	387e4e778f00b8761b3abffaf556989dbbaff418 (diff)