Ubuntu CVE Tracker

Merge ~octagalland/ubuntu-cve-tracker:assign_cve_2021_33582 into ubuntu-cve-tracker:master

  1. Git
  2. lp:~octagalland/ubuntu-cve-tracker
  3. assign_cve_2021_33582
  4. Merge into master
Proposed by Octavio Galland
Status: Merged
Merged at revision: c441da1fce8354c63b69afdce760fde3fd80b077
Proposed branch: ~octagalland/ubuntu-cve-tracker:assign_cve_2021_33582
Merge into: ubuntu-cve-tracker:master
Diff against target: 161 lines (+47/-45)
3 files modified
active/CVE-2021-32056 (+7/-12)
active/CVE-2021-33582 (+28/-21)
active/CVE-2024-34055 (+12/-12)
Reviewer Review Type Date Requested Status
Emilia Torino Approve
Review via email: mp+467406@code.launchpad.net

Commit message

assign CVE-2021-33582 to octagalland

Description of the change

assign CVE-2021-33582 to octagalland

To post a comment you must log in.
Revision history for this message
Emilia Torino (emitorino) wrote :

LGTM, Thanks!

review: Approve
Revision history for this message
Emilia Torino (emitorino) wrote :

Can you please check the CI issue? Thanks!

Preview Diff

[H/L] Next/Prev Comment, [J/K] Next/Prev File, [N/P] Next/Prev Hunk
1diff --git a/active/CVE-2021-32056 b/active/CVE-2021-32056
2index 7ced318..6654876 100644
3--- a/active/CVE-2021-32056
4+++ b/active/CVE-2021-32056
5@@ -17,7 +17,7 @@ Mitigation:
6 Bugs:
7 Priority: medium
8 Discovered-by:
9-Assigned-to:
10+Assigned-to: octagalland
11 CVSS:
12 nvd: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L [4.3 MEDIUM]
13
14@@ -32,14 +32,9 @@ bionic_cyrus-imapd: ignored (end of standard support, was needed)
15 esm-apps/bionic_cyrus-imapd: needed
16 focal_cyrus-imapd: needed
17 esm-apps/focal_cyrus-imapd: needed
18-groovy_cyrus-imapd: ignored (end of life)
19-hirsute_cyrus-imapd: ignored (end of life)
20-impish_cyrus-imapd: ignored (end of life)
21-jammy_cyrus-imapd: needed
22-esm-apps/jammy_cyrus-imapd: needed
23-kinetic_cyrus-imapd: ignored (end of life, was needed)
24-lunar_cyrus-imapd: ignored (end of life, was needed)
25-mantic_cyrus-imapd: needed
26-noble_cyrus-imapd: needed
27-esm-apps/noble_cyrus-imapd: needed
28-devel_cyrus-imapd: needed
29+jammy_cyrus-imapd: not-affected (3.4.2-2)
30+esm-apps/jammy_cyrus-imapd: not-affected (3.4.2-2)
31+mantic_cyrus-imapd: not-affected (3.6.1-2ubuntu1)
32+noble_cyrus-imapd: not-affected (3.8.1-1build2)
33+esm-apps/noble_cyrus-imapd: not-affected (3.8.1-1build2)
34+devel_cyrus-imapd: not-affected (3.8.2-1)
35diff --git a/active/CVE-2021-33582 b/active/CVE-2021-33582
36index 730d51a..e4197dc 100644
37--- a/active/CVE-2021-33582
38+++ b/active/CVE-2021-33582
39@@ -2,6 +2,15 @@ Candidate: CVE-2021-33582
40 CRD: 2021-09-01
41 PublicDate: 2021-09-01 06:15:00 UTC
42 References:
43+ https://github.com/cyrusimap/cyrus-imapd/commit/93901789300aeefbe5c5829f2ab938e567a796dd
44+ https://github.com/cyrusimap/cyrus-imapd/commit/768b3aa4f51b636f0c591b6b34dd96aab9ce0136
45+ https://github.com/cyrusimap/cyrus-imapd/commit/3411deb448d29f4d287e90272dfa70d6f067ca67
46+ https://github.com/cyrusimap/cyrus-imapd/commit/810bb164a805395cd7a42412644f1d595e6b105e
47+ https://github.com/cyrusimap/cyrus-imapd/commit/943d4c37a063d2cf3384a88df9b884a167c04468
48+ https://www.cyrusimap.org/imap/download/release-notes/3.2/x/3.2.8.html
49+ https://www.cyrusimap.org/imap/download/release-notes/3.4/x/3.4.2.html
50+ https://www.cyrusimap.org/imap/download/release-notes/3.2/x/3.2.8.html
51+ https://www.cyrusimap.org/imap/download/release-notes/3.0/x/3.0.16.html
52 https://www.cve.org/CVERecord?id=CVE-2021-33582
53 Description:
54 Cyrus IMAP before 3.4.2 allows remote attackers to cause a denial of
55@@ -14,44 +23,42 @@ Mitigation:
56 Bugs:
57 Priority: medium
58 Discovered-by:
59-Assigned-to:
60+Assigned-to: octagalland
61 CVSS:
62 nvd: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H [7.5 HIGH]
63
64
65 Patches_cyrus-imapd:
66-upstream_cyrus-imapd: needs-triage
67+ upstream: https://github.com/cyrusimap/cyrus-imapd/commit/eba721a28dc8e521240d2e501a4142a7fab77119
68+ upstream: https://github.com/cyrusimap/cyrus-imapd/commit/bfb966ee8897305451ea978fd963ef89e3047369
69+ upstream: https://github.com/cyrusimap/cyrus-imapd/commit/aca2af0f2a3382b8afc2fa8ebd7557fdeb61d131
70+upstream_cyrus-imapd: released (3.4.2, 3.2.8, 3.0.16)
71 trusty_cyrus-imapd: ignored (end of standard support)
72 trusty/esm_cyrus-imapd: DNE
73 xenial_cyrus-imapd: ignored (end of standard support)
74 bionic_cyrus-imapd: ignored (end of standard support, was needs-triage)
75-esm-apps/bionic_cyrus-imapd: needs-triage
76-focal_cyrus-imapd: needs-triage
77-esm-apps/focal_cyrus-imapd: needs-triage
78-hirsute_cyrus-imapd: ignored (end of life)
79-impish_cyrus-imapd: ignored (end of life)
80-jammy_cyrus-imapd: needs-triage
81-esm-apps/jammy_cyrus-imapd: needs-triage
82-kinetic_cyrus-imapd: ignored (end of life, was needs-triage)
83-lunar_cyrus-imapd: ignored (end of life, was needs-triage)
84-mantic_cyrus-imapd: needs-triage
85-noble_cyrus-imapd: needs-triage
86-esm-apps/noble_cyrus-imapd: needs-triage
87-devel_cyrus-imapd: needs-triage
88+esm-apps/bionic_cyrus-imapd: needed
89+focal_cyrus-imapd: needed
90+esm-apps/focal_cyrus-imapd: needed
91+jammy_cyrus-imapd: not-affected
92+esm-apps/jammy_cyrus-imapd: not-affected
93+mantic_cyrus-imapd: not-affected
94+noble_cyrus-imapd: not-affected
95+esm-apps/noble_cyrus-imapd: not-affected
96+devel_cyrus-imapd: not-affected
97
98 Patches_cyrus-imapd-2.4:
99-upstream_cyrus-imapd-2.4: needs-triage
100+ upstream: https://github.com/cyrusimap/cyrus-imapd/commit/eba721a28dc8e521240d2e501a4142a7fab77119
101+ upstream: https://github.com/cyrusimap/cyrus-imapd/commit/bfb966ee8897305451ea978fd963ef89e3047369
102+ upstream: https://github.com/cyrusimap/cyrus-imapd/commit/aca2af0f2a3382b8afc2fa8ebd7557fdeb61d131
103+upstream_cyrus-imapd-2.4: released (3.4.2, 3.2.8, 1.0.16)
104 trusty_cyrus-imapd-2.4: ignored (end of standard support)
105 trusty/esm_cyrus-imapd-2.4: DNE
106 xenial_cyrus-imapd-2.4: ignored (end of standard support)
107-esm-apps/xenial_cyrus-imapd-2.4: needs-triage
108+esm-apps/xenial_cyrus-imapd-2.4: needed
109 bionic_cyrus-imapd-2.4: DNE
110 focal_cyrus-imapd-2.4: DNE
111-hirsute_cyrus-imapd-2.4: DNE
112-impish_cyrus-imapd-2.4: DNE
113 jammy_cyrus-imapd-2.4: DNE
114-kinetic_cyrus-imapd-2.4: DNE
115-lunar_cyrus-imapd-2.4: DNE
116 mantic_cyrus-imapd-2.4: DNE
117 noble_cyrus-imapd-2.4: DNE
118 devel_cyrus-imapd-2.4: DNE
119diff --git a/active/CVE-2024-34055 b/active/CVE-2024-34055
120index 31dd023..69330ee 100644
121--- a/active/CVE-2024-34055
122+++ b/active/CVE-2024-34055
123@@ -13,26 +13,26 @@ Mitigation:
124 Bugs:
125 Priority: medium
126 Discovered-by:
127-Assigned-to:
128+Assigned-to: octagalland
129 CVSS:
130 nvd: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H [6.5 MEDIUM]
131
132
133 Patches_cyrus-imapd:
134-upstream_cyrus-imapd: released (3.8.3-1)
135-esm-apps/bionic_cyrus-imapd: needs-triage
136-focal_cyrus-imapd: needs-triage
137-esm-apps/focal_cyrus-imapd: needs-triage
138-jammy_cyrus-imapd: needs-triage
139-esm-apps/jammy_cyrus-imapd: needs-triage
140-mantic_cyrus-imapd: needs-triage
141-noble_cyrus-imapd: needs-triage
142-esm-apps/noble_cyrus-imapd: needs-triage
143+upstream_cyrus-imapd: released (3.8.3)
144+esm-apps/bionic_cyrus-imapd: needed
145+focal_cyrus-imapd: needed
146+esm-apps/focal_cyrus-imapd: needed
147+jammy_cyrus-imapd: needed
148+esm-apps/jammy_cyrus-imapd: needed
149+mantic_cyrus-imapd: needed
150+noble_cyrus-imapd: needed
151+esm-apps/noble_cyrus-imapd: needed
152 devel_cyrus-imapd: not-affected (3.8.3-1)
153
154 Patches_cyrus-imapd-2.4:
155-upstream_cyrus-imapd-2.4: needs-triage
156-esm-apps/xenial_cyrus-imapd-2.4: needs-triage
157+upstream_cyrus-imapd-2.4: released (3.8.3)
158+esm-apps/xenial_cyrus-imapd-2.4: needed
159 focal_cyrus-imapd-2.4: DNE
160 jammy_cyrus-imapd-2.4: DNE
161 mantic_cyrus-imapd-2.4: DNE

Subscribers

People subscribed via source and target branches