[Git][security-tracker-team/security-tracker][master] Add followup commit for CVE-2022-37434/zlib
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Aug 9 07:32:01 BST 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
f53aa481 by Salvatore Bonaccorso at 2022-08-09T08:31:21+02:00
Add followup commit for CVE-2022-37434/zlib
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1004,6 +1004,7 @@ CVE-2022-37434 (zlib through 1.2.12 has a heap-based buffer over-read or buffer
- zlib <unfixed> (bug #1016710)
NOTE: https://github.com/ivd38/zlib_overflow
NOTE: https://github.com/madler/zlib/commit/eff308af425b67093bab25f80f1ae950166bece1
+ NOTE: https://github.com/madler/zlib/commit/1eb7682f845ac9e9bf9ae35bbfb3bad5dacbd91d
CVE-2022-37431 (A Reflected Cross-site scripting (XSS) issue was discovered in dotCMS ...)
NOT-FOR-US: dotCMS
CVE-2022-37430
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f53aa4818a3c22cafb31d4b417316804e8c67eb2
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f53aa4818a3c22cafb31d4b417316804e8c67eb2
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220809/e6b7d39a/attachment.htm>
More information about the debian-security-tracker-commits
mailing list