From 6436b8c13f0cea9181be36919e8a31b0c221beaf Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Fri, 18 Feb 2022 08:10:25 +0100
Subject: Add CVE-2021-3155/snapd

---
 data/CVE/2021.list | 4 ++++
 1 file changed, 4 insertions(+)

(limited to 'data/CVE/2021.list')

diff --git a/data/CVE/2021.list b/data/CVE/2021.list
index 8170ef8391..6bdc38e0c9 100644
--- a/data/CVE/2021.list
+++ b/data/CVE/2021.list
@@ -53369,6 +53369,10 @@ CVE-2021-3156 (Sudo before 1.9.5p2 contains an off-by-one error that can result
 	NOTE: https://www.openwall.com/lists/oss-security/2021/01/26/3
 CVE-2021-3155
 	RESERVED
+	- snapd 2.54-1
+	NOTE: https://github.com/snapcore/snapd/pull/9841
+	NOTE: https://github.com/snapcore/snapd/commit/6bcaeeccd16ed8298a301dd92f6907f88c24cc85 (2.52)
+	NOTE: https://github.com/snapcore/snapd/commit/7d2a966620002149891446a53cf114804808dcca (2.54)
 CVE-2021-3154 (An issue was discovered in SolarWinds Serv-U before 15.2.2. Unauthenti ...)
 	NOT-FOR-US: SolarWinds
 CVE-2021-3153 (HashiCorp Terraform Enterprise up to v202102-2 failed to enforce an or ...)
-- 
cgit v1.2.3