[Git][security-tracker-team/security-tracker][master] Add CVE-2022-27239/cifs-utils
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Apr 27 12:44:31 BST 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
1c39e281 by Salvatore Bonaccorso at 2022-04-27T13:44:03+02:00
Add CVE-2022-27239/cifs-utils
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -7069,8 +7069,13 @@ CVE-2022-27240 (scheme/webauthn.c in Glewlwyd SSO server 2.x before 2.6.2 has a
[bullseye] - glewlwyd 2.5.2-2+deb11u3
[buster] - glewlwyd <no-dsa> (Minor issue)
NOTE: https://github.com/babelouest/glewlwyd/commit/4c5597c155bfbaf6491cf6b83479d241ae66940a (v2.6.2)
-CVE-2022-27239
+CVE-2022-27239 [cifs-utils mount.cifs buffer overflow in ip parameter]
RESERVED
+ - cifs-utils <unfixed>
+ NOTE: https://bugzilla.samba.org/show_bug.cgi?id=15025
+ NOTE: https://bugzilla.suse.com/show_bug.cgi?id=1197216
+ NOTE: https://github.com/piastry/cifs-utils/pull/7
+ NOTE: https://github.com/piastry/cifs-utils/commit/007c07fd91b6d42f8bd45187cf78ebb06801139d
CVE-2022-27238
RESERVED
CVE-2022-27237 (There is a cross-site scripting (XSS) vulnerability in an NI Web Serve ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1c39e28115e76e34ff31a16c7b36a9fe5e584e6b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1c39e28115e76e34ff31a16c7b36a9fe5e584e6b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220427/2a7c1ad5/attachment.htm>
More information about the debian-security-tracker-commits
mailing list