[Git][security-tracker-team/security-tracker][master] CVE-2022-27774, CVE-2022-27775, CVE-2022-27776

[Henri Salo (@hsalo-guest)]

Henri Salo pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9f681b89 by Henri Salo at 2022-04-27T09:55:35+03:00
CVE-2022-27774, CVE-2022-27775, CVE-2022-27776

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5578,12 +5578,21 @@ CVE-2022-27778
 	RESERVED
 CVE-2022-27777
 	RESERVED
-CVE-2022-27776
+CVE-2022-27776 [Auth/cookie leak on redirect]
 	RESERVED
-CVE-2022-27775
+	- curl <unfixed>
+	NOTE: https://curl.se/docs/CVE-2022-27776.html
+	TODO: check
+CVE-2022-27775 [Bad local IPv6 connection reuse]
 	RESERVED
-CVE-2022-27774
+	- curl <unfixed>
+	NOTE: https://curl.se/docs/CVE-2022-27775.html
+	TODO: check
+CVE-2022-27774 [Credential leak on redirect]
 	RESERVED
+	- curl <unfixed>
+	NOTE: https://curl.se/docs/CVE-2022-27774.html
+	TODO: check
 CVE-2022-27773
 	RESERVED
 CVE-2022-27772 (** UNSUPPORTED WHEN ASSIGNED ** spring-boot versions prior to version  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9f681b8935afa0e97aee4ab25603bf053900bb1f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9f681b8935afa0e97aee4ab25603bf053900bb1f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220427/574f20ec/attachment.htm>