diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2022-02-15 07:17:46 +0100 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2022-02-15 07:25:44 +0100 |
| commit | f488fc16c6dd9ac4a6bc62b5a1c45dc4a2693346 (patch) | |
| tree | 4d1d23fe4f24c6c1882b638976653a408a5a62ae | |
| parent | 0b433f40edef6733fef0f5d2476c712e802319c1 (diff) | |
Update information for CVE-2021-4115
| -rw-r--r-- | data/CVE/2021.list | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/data/CVE/2021.list b/data/CVE/2021.list index 36db6ce416..d8da7a4268 100644 --- a/data/CVE/2021.list +++ b/data/CVE/2021.list @@ -4279,7 +4279,11 @@ CVE-2021-4116 (yetiforcecrm is vulnerable to Improper Neutralization of Input Du CVE-2021-4115 [file descriptor leak allows an unprivileged user to cause a crash] RESERVED - policykit-1 <unfixed> (bug #1005784) + [buster] - policykit-1 <not-affected> (Vulnerable code not present, patch introducing issue not backported) + [stretch] - policykit-1 <not-affected> (Vulnerable code not present, patch introducing issue not backported) NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2007534 + NOTE: Issue Upstream introduced in 0.113 with https://gitlab.freedesktop.org/polkit/polkit/-/commit/bfa5036bfb93582c5a87c44b847957479d911e38 + NOTE: Debian backported 0.113 commits in 0.105-26 CVE-2021-4114 REJECTED CVE-2021-4113 |