https://db.gcve.eu Contains only the most 10 recent comments. http://www.rssboard.org/rss-specification python-feedgen en Fri, 12 Jun 2026 00:35:22 +0000 https://db.gcve.eu/comment/f5ac1ede-8d1c-409b-b6bc-ce202e11fc90 The timeline on https://bugzilla.tianocore.org/show_bug.cgi?id=3387 is interesting: - 2021-05-10 16:43 UTC - Bug reported by John Mathews - 2021-07-07 14:02:27 - Working patch mentioned by Vincent Zimmer (and also recommends the need of a CVE) - 2022-05-10 21:04:45 UTC "Blackduck has this CVE in their database so this CVE is being flagged for all edk2 products that are scanned." - 2022-06-14 05:52:10 UTC - Patch doesn't build. - 2022-11-04 - Patch merged in the repo https://github.com/tianocore/edk2/commit/cab1f02565d3b29081dd21afb074f35fdb4e1fd6 But the vulnerability was published 2022-03-03 21:53 or is the timeline incorrect? The timeline on https://bugzilla.tianocore.org/show_bug.cgi?id=3387 is interesting: - 2021-05-10 16:43 UTC - Bug reported by John Mathews - 2021-07-07 14:02:27 - Working patch mentioned by Vincent Zimmer (and also recommends the need of a CVE) - 2022-05-10 21:04:45 UTC "Blackduck has this CVE in their database so this CVE is being flagged for all edk2 products that are scanned." - 2022-06-14 05:52:10 UTC - Patch doesn't build. - 2022-11-04 - Patch merged in the repo https://github.com/tianocore/edk2/commit/cab1f02565d3b29081dd21afb074f35fdb4e1fd6 But the vulnerability was published 2022-03-03 21:53 or is the timeline incorrect? https://db.gcve.eu/comment/f5ac1ede-8d1c-409b-b6bc-ce202e11fc90 Sat, 27 Jul 2024 08:42:43 +0000