patrick/zephyr
1
0
Fork 0
Code Issues Pull requests Actions 7 Packages Projects Releases Wiki Activity

doc: security: Update information about CVE-2021-3625

Browse source 
Update CVE that left embargo with the proper information.

Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>
This commit is contained in:
Flavio Ceolin 2021-10-05 11:02:22 -07:00 committed by Anas Nashif
parent 879438a424
commit 613b38c24b
1 changed files with 15 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

15
doc/security/vulnerabilities.rst
View file

@ -1035,3 +1035,18 @@ This has been fixed in main for v2.6.0
- `PR 35985 fix for 1.14
<https://github.com/zephyrproject-rtos/zephyr/pull/35985>`_
CVE-2021-3625
-------------
Buffer overflow in Zephyr USB DFU DNLOAD
This has been fixed in main for v2.6.0
- `CVE-2021-3625 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3625>`_
- `Zephyr project bug tracker GHSA-c3gr-hgvr-f363
<https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-c3gr-hgvr-f363>`_
- `PR 36694 fix for main
<https://github.com/zephyrproject-rtos/zephyr/pull/36694>`_