CVE-2021-4213

NameCVE-2021-4213
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
jss (PTS)stretch4.3.1-7vulnerable
buster4.5.1-1vulnerable
bullseye4.8.0-2vulnerable
bookworm, sid5.1.0-1vulnerable

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
jsssource(unstable)(unfixed)

Notes

[bullseye] - jss <no-dsa> (Minor issue)
[buster] - jss <no-dsa> (Minor issue)
[stretch] - jss <postponed> (revisit when/if fix is complete)
https://bugzilla.redhat.com/show_bug.cgi?id=2042900
https://github.com/dogtagpki/jss/commit/5922560a78d0dee61af8a33cc9cfbf4cfa291448 (v5.2.0-beta1)
https://github.com/dogtagpki/jss/commit/3aabe0e9d59b0a42e68ac8cd0468f9c5179967d2 (v5.2.0-beta1)

Search for package or bug name: Reporting problems