Date: Mon, 28 Jun 2021 15:01:54 GMT From: Dave Cottlehuber <dch@FreeBSD.org> To: ports-committers@FreeBSD.org, dev-commits-ports-all@FreeBSD.org, dev-commits-ports-main@FreeBSD.org Subject: git: 69c471ebe007 - main - security/vuxml: Pet puppetdb entry Message-ID: <202106281501.15SF1sKO060723@gitrepo.freebsd.org>
next in thread | raw e-mail | index | archive | help
The branch main has been updated by dch: URL: https://cgit.FreeBSD.org/ports/commit/?id=69c471ebe0077879c98fb2d66ada7d414dbac592 commit 69c471ebe0077879c98fb2d66ada7d414dbac592 Author: Dave Cottlehuber <dch@FreeBSD.org> AuthorDate: 2021-06-28 14:50:55 +0000 Commit: Dave Cottlehuber <dch@FreeBSD.org> CommitDate: 2021-06-28 15:01:36 +0000 security/vuxml: Pet puppetdb entry make clean validate reports a missing stanza --- security/vuxml/vuln-2021.xml | 22 ++++++++++++++-------- 1 file changed, 14 insertions(+), 8 deletions(-) diff --git a/security/vuxml/vuln-2021.xml b/security/vuxml/vuln-2021.xml index 55a391078e51..c95c6dc15edd 100644 --- a/security/vuxml/vuln-2021.xml +++ b/security/vuxml/vuln-2021.xml @@ -33,19 +33,22 @@ <topic>PuppetDB -- SQL Injection</topic> <affects> <package> - <name>puppetdb6</name> - <range><lt>6.17.0</lt></range> + <name>puppetdb6</name> + <range><lt>6.17.0</lt></range> </package> <package> - <name>puppetdb7</name> - <range><lt>7.4.1</lt></range> + <name>puppetdb7</name> + <range><lt>7.4.1</lt></range> + </package> </affects> <description> <body xmlns="http://www.w3.org/1999/xhtml"> - <p>Puppet reports:</p> - <blockquote cite="https://puppet.com/docs/puppetdb/latest/release_notes.html#security-fixes"> - <p>Fixed an issue where someone with the ability to query PuppetDB could arbitrarily write, update, or delete data CVE-2021-27021 PDB-5138.</p> - </blockquote> + <p>Puppet reports:</p> + <blockquote cite="https://puppet.com/docs/puppetdb/latest/release_notes.html#security-fixes"> + <p>Fixed an issue where someone with the ability to query PuppetDB + could arbitrarily write, update, or delete data CVE-2021-27021 + PDB-5138.</p> + </blockquote> </body> </description> <references> @@ -55,6 +58,9 @@ </references> <dates> <discovery>2021-06-24</discovery> + <entry>2021-06-25</entry> + </dates> + </vuln> <vuln vid="4c9159ea-d4c9-11eb-aeee-8c164582fbac"> <topic>Ansible -- Templating engine bug</topic>
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?202106281501.15SF1sKO060723>