[Git][security-tracker-team/security-tracker][master] Add CVE-2022-1427/mruby

Sat Apr 23 21:26:26 BST 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
35b8d6fb by Salvatore Bonaccorso at 2022-04-23T22:25:48+02:00
Add CVE-2022-1427/mruby

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -104,7 +104,9 @@ CVE-2022-29567
 CVE-2022-29566 (The Bulletproofs 2017/1066 paper mishandles Fiat-Shamir generation bec ...)
 	TODO: check
 CVE-2022-1427 (Out-of-bounds Read in mrb_obj_is_kind_of in in GitHub repository mruby ...)
-	TODO: check
+	- mruby <unfixed>
+	NOTE: https://huntr.dev/bounties/23b6f0a9-64f5-421e-a55f-b5b7a671f301
+	NOTE: https://github.com/mruby/mruby/commit/a4d97934d51cb88954cc49161dc1d151f64afb6b
 CVE-2022-29565
 	RESERVED
 CVE-2022-29564



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/35b8d6fbe703573b0c87205584d366f4ca888eda

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/35b8d6fbe703573b0c87205584d366f4ca888eda
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220423/d154bd4b/attachment.htm>
