Previous work: {T263803}
Tracking bug for next security release, 1.31.13/1.35.2
| Maniphest ID | CVE ID | REL1_31 | REL1_35 | master
| ---- | ---- | ---- | ---- | ----
| T270453 | CVE-2021- | | | {F33955445} |
| T270713 | CVE-2021- | | | {F33984659} |
| T270988 | CVE-2021- | | | {F33982707} |
| T272386 | CVE-2021- | | | T272386#6786300 |
| T274883 | CVE-2021- | n/a | n/a | merged |
| T276306 | CVE-2021- | | | {F34133819} |
| T276843 | CVE-2021-20270, CVE-2021-27291 | | | merged |
| T277009 | CVE-2021- | merged | merged | merged |
| T278058 | CVE-2021- | merged | merged | merged |
| T270459 | CVE-2021- | n/a | merged | merged |
**Notes:**
# T274883 never made it into a release, but I figured we'd track it here just in case. There's also a "better" patch that will be pushed through gerrit, as a replacement to the initial production security patch.
# T277009 went through gerrit as a **low-risk**, security-related bug.