From d0a30241fc830245a5f6e7d9c48043ef7a7fbf1e Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Sat, 19 Feb 2022 15:01:10 +0100
Subject: Reference upstream issue for CVE-2021-4115/policykit-1

---
 data/CVE/2021.list | 1 +
 1 file changed, 1 insertion(+)

(limited to 'data/CVE/2021.list')

diff --git a/data/CVE/2021.list b/data/CVE/2021.list
index 757d0d411c..2a936cfccd 100644
--- a/data/CVE/2021.list
+++ b/data/CVE/2021.list
@@ -4304,6 +4304,7 @@ CVE-2021-4115 [file descriptor leak allows an unprivileged user to cause a crash
 	[stretch] - policykit-1 <not-affected> (Vulnerable code not present, patch introducing issue not backported)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2007534
 	NOTE: https://securitylab.github.com/advisories/GHSL-2021-077-polkit/
+	NOTE: https://gitlab.freedesktop.org/polkit/polkit/-/issues/141
 	NOTE: Issue Upstream introduced in 0.113 with https://gitlab.freedesktop.org/polkit/polkit/-/commit/bfa5036bfb93582c5a87c44b847957479d911e38
 	NOTE: Debian backported 0.113 commits in 0.105-26
 CVE-2021-4114
-- 
cgit v1.2.3