From d695b665afb1f287866b0262c0bbd4d74f7a40be Mon Sep 17 00:00:00 2001 From: Salvatore Bonaccorso Date: Tue, 22 Feb 2022 09:30:32 +0100 Subject: Track fixed version for various libsolv issues --- data/CVE/2021.list | 21 +++++++++++---------- 1 file changed, 11 insertions(+), 10 deletions(-) diff --git a/data/CVE/2021.list b/data/CVE/2021.list index b4ca6287e6..06406baf29 100644 --- a/data/CVE/2021.list +++ b/data/CVE/2021.list @@ -5570,49 +5570,49 @@ CVE-2021-44579 CVE-2021-44578 RESERVED CVE-2021-44577 (Two heap-overflow vulnerabilities exist in openSUSE libsolv through 13 ...) - - libsolv (unimportant) + - libsolv 0.7.17-1 (unimportant) NOTE: https://github.com/openSUSE/libsolv/issues/428 NOTE: https://github.com/openSUSE/libsolv/commit/0077ef29eb46d2e1df2f230fc95a1d9748d49dec (0.7.17) NOTE: Issue is fixed in the testcase; negligible security impact CVE-2021-44576 (Two memory vulnerabilities exists in openSUSE libsolv through 13 Dec 2 ...) - - libsolv (unimportant) + - libsolv 0.7.17-1 (unimportant) NOTE: https://github.com/openSUSE/libsolv/issues/426 NOTE: https://github.com/openSUSE/libsolv/commit/0077ef29eb46d2e1df2f230fc95a1d9748d49dec (0.7.17) NOTE: Issue is fixed in the testcase; negligible security impact CVE-2021-44575 (Two heap-overflow vulnerabilities exists in openSUSE libsolv through 1 ...) - - libsolv (unimportant) + - libsolv 0.7.17-1 (unimportant) NOTE: https://github.com/openSUSE/libsolv/issues/427 NOTE: https://github.com/openSUSE/libsolv/commit/0077ef29eb46d2e1df2f230fc95a1d9748d49dec (0.7.17) NOTE: Issue is fixed in the testcase; negligible security impact CVE-2021-44574 (A heap-overflow vulnerability exists in openSUSE libsolv through 13 De ...) - - libsolv (unimportant) + - libsolv 0.7.17-1 (unimportant) NOTE: https://github.com/openSUSE/libsolv/issues/429 NOTE: https://github.com/openSUSE/libsolv/commit/0077ef29eb46d2e1df2f230fc95a1d9748d49dec (0.7.17) NOTE: Issue is fixed in the testcase; negligible security impact CVE-2021-44573 (Two heap overflow vulnerabilities exist in oenSUSE libsolv through 13 ...) - - libsolv (unimportant) + - libsolv 0.7.17-1 (unimportant) NOTE: https://github.com/openSUSE/libsolv/issues/430 NOTE: https://github.com/openSUSE/libsolv/commit/0077ef29eb46d2e1df2f230fc95a1d9748d49dec (0.7.17) NOTE: Issue is fixed in the testcase; negligible security impact CVE-2021-44572 RESERVED CVE-2021-44571 (A heap overflow vulnerability exisfts in openSUSE libsolv through 13 D ...) - - libsolv (unimportant) + - libsolv 0.7.17-1 (unimportant) NOTE: https://github.com/openSUSE/libsolv/issues/421 NOTE: https://github.com/openSUSE/libsolv/commit/0077ef29eb46d2e1df2f230fc95a1d9748d49dec (0.7.17) NOTE: Issue is fixed in the testcase; negligible security impact CVE-2021-44570 (Two heap-overflow vulnerabilities exists in openSUSE/libsolv through 1 ...) - - libsolv (unimportant) + - libsolv 0.7.17-1 (unimportant) NOTE: https://github.com/openSUSE/libsolv/issues/424 NOTE: https://github.com/openSUSE/libsolv/commit/0077ef29eb46d2e1df2f230fc95a1d9748d49dec (0.7.17) NOTE: Issue is fixed in the testcase; negligible security impact CVE-2021-44569 (A heap-buffer openSUSE libsolv through 13 Dec 2020 exists in the solve ...) - - libsolv (unimportant) + - libsolv 0.7.17-1 (unimportant) NOTE: https://github.com/openSUSE/libsolv/issues/423 NOTE: https://github.com/openSUSE/libsolv/commit/0077ef29eb46d2e1df2f230fc95a1d9748d49dec (0.7.17) NOTE: Issue is fixed in the testcase; negligible security impact CVE-2021-44568 (Two heap-overflow vulnerabilities exist in openSUSE/libsolv libsolv th ...) - - libsolv (unimportant) + - libsolv 0.7.17-1 (unimportant) NOTE: https://github.com/openSUSE/libsolv/issues/425 NOTE: https://github.com/openSUSE/libsolv/commit/0077ef29eb46d2e1df2f230fc95a1d9748d49dec (0.7.17) NOTE: Issue is fixed in the testcase; negligible security impact @@ -51731,8 +51731,9 @@ CVE-2021-3202 CVE-2021-3201 RESERVED CVE-2021-3200 (Buffer overflow vulnerability in libsolv 2020-12-13 via the Solver * t ...) - - libsolv (unimportant) + - libsolv 0.7.17-1 (unimportant) NOTE: https://github.com/openSUSE/libsolv/issues/416 + NOTE: https://github.com/openSUSE/libsolv/commit/0077ef29eb46d2e1df2f230fc95a1d9748d49dec (0.7.17) NOTE: Crash in CLI tool, no security impact CVE-2021-3199 (Directory traversal with remote code execution can occur in /upload in ...) NOT-FOR-US: ONLYOFFICE Document Server -- cgit v1.2.3