[Git][security-tracker-team/security-tracker][master] CVE-2022-1049/pcs: stretch not-affected
Sylvain Beucler (@beuc)
beuc at debian.org
Sat Apr 2 11:35:34 BST 2022
Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker
Commits:
9eefeeee by Sylvain Beucler at 2022-04-02T12:35:14+02:00
CVE-2022-1049/pcs: stretch not-affected
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2014,8 +2014,10 @@ CVE-2022-1049 (A flaw was found in the Pacemaker configuration tool (pcs). The p
- pcs <unfixed>
[bullseye] - pcs <no-dsa> (Minor issue)
[buster] - pcs <no-dsa> (Minor issue)
+ [stretch] - pcs <not-affected> (Vulnerable code introduced later, ./pcs/daemon/ not present)
NOTE: https://huntr.dev/bounties/7aa921fc-a568-4fd8-96f4-7cd826246aa5
NOTE: https://github.com/ClusterLabs/pcs/commit/fb860005117dc9e092649687dfa1304fb423efc5
+ NOTE: Introduced by https://github.com/ClusterLabs/pcs/commit/8378cf1a81efc0cd421483234943057e2be0a8ed (v0.10)
CVE-2022-1048 [race condition in snd_pcm_hw_free leading to use-after-free]
RESERVED
- linux 5.16.18-1
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9eefeeee5711498577335b9ffb6219ba84c8957d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9eefeeee5711498577335b9ffb6219ba84c8957d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220402/ecd10388/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list