Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

update: patch #1102

Open
dongsupark opened this issue Jun 27, 2023 · 0 comments
Open

update: patch #1102

dongsupark opened this issue Jun 27, 2023 · 0 comments
Labels
advisory/only-sdk affects only Flatcar SDK advisory/upstream-blocked blocked by upstream projects advisory security advisory cvss/MEDIUM >= 4 && < 7 assessed CVSS security security concerns

Comments

@dongsupark
Copy link
Member

Name: patch
CVEs: CVE-2021-45261
CVSSs: 5.5
Action Needed: TBD

Summary: An Invalid Pointer vulnerability exists in GNU patch 2.7 via the another_hunk function, which causes a Denial of Service.

Note, patch is included only in SDK, so not critical.

refmap.gentoo: https://bugs.gentoo.org/829835
@dongsupark dongsupark added security security concerns advisory security advisory cvss/MEDIUM >= 4 && < 7 assessed CVSS advisory/upstream-blocked blocked by upstream projects advisory/only-sdk affects only Flatcar SDK labels Jun 27, 2023
@github-actions github-actions bot mentioned this issue Nov 10, 2023
Closed
@github-actions github-actions bot mentioned this issue Jan 22, 2024
Closed
@github-actions github-actions bot mentioned this issue Feb 22, 2024
Closed
@github-actions github-actions bot mentioned this issue Mar 22, 2024
Closed
@github-actions github-actions bot mentioned this issue Apr 22, 2024
Closed
@github-actions github-actions bot mentioned this issue May 22, 2024
Closed
@github-actions github-actions bot mentioned this issue Jun 22, 2024
Closed
@github-actions github-actions bot mentioned this issue Jul 22, 2024
Closed
@github-actions github-actions bot mentioned this issue Aug 22, 2024
Closed
@github-actions github-actions bot mentioned this issue Sep 22, 2024
Closed
@github-actions github-actions bot mentioned this issue Oct 22, 2024
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
advisory/only-sdk affects only Flatcar SDK advisory/upstream-blocked blocked by upstream projects advisory security advisory cvss/MEDIUM >= 4 && < 7 assessed CVSS security security concerns
Projects
Flatcar tactical, release planning, and roadmap
Status: Long Term
Milestone
No milestone
Development

No branches or pull requests
1 participant
@dongsupark