[Git][security-tracker-team/security-tracker][master] Add references for trafficserver advisory

Thu Aug 11 09:28:04 BST 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
69354781 by Salvatore Bonaccorso at 2022-08-11T10:27:40+02:00
Add references for trafficserver advisory

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -16132,6 +16132,7 @@ CVE-2022-31781 (Apache Tapestry up to version 5.8.1 is vulnerable to Regular Exp
 	NOT-FOR-US: Apache Tapestry
 CVE-2022-31780 (Improper Input Validation vulnerability in HTTP/2 frame handling of Ap ...)
 	- trafficserver 9.1.3+ds-1
+	NOTE: https://lists.apache.org/thread/rc64lwbdgrkv674koc3zl1sljr9vwg21
 CVE-2022-31779 (Improper Input Validation vulnerability in HTTP/2 header parsing of Ap ...)
 	- trafficserver 9.1.3+ds-1
 	NOTE: https://lists.apache.org/thread/rc64lwbdgrkv674koc3zl1sljr9vwg21
@@ -27134,6 +27135,7 @@ CVE-2022-28130
 	RESERVED
 CVE-2022-28129 (Improper Input Validation vulnerability in HTTP/1.1 header parsing of  ...)
 	- trafficserver 9.1.3+ds-1
+	NOTE: https://lists.apache.org/thread/rc64lwbdgrkv674koc3zl1sljr9vwg21
 CVE-2022-1148 (Improper authorization in GitLab Pages included with GitLab CE/EE affe ...)
 	- gitlab <unfixed>
 CVE-2022-1147
@@ -33813,6 +33815,7 @@ CVE-2022-25768
 	RESERVED
 CVE-2022-25763 (Improper Input Validation vulnerability in HTTP/2 request validation o ...)
 	- trafficserver 9.1.3+ds-1
+	NOTE: https://lists.apache.org/thread/rc64lwbdgrkv674koc3zl1sljr9vwg21
 CVE-2022-21182 (A privilege escalation vulnerability exists in the router configuratio ...)
 	NOT-FOR-US: InHand Networks InRouter302
 CVE-2022-0734 (A cross-site scripting vulnerability was identified in the CGI program ...)
@@ -74324,6 +74327,7 @@ CVE-2021-37159 (hso_free_net_device in drivers/net/usb/hso.c in the Linux kernel
 	NOTE: https://www.spinics.net/lists/linux-usb/msg202228.html
 CVE-2021-37150 (Improper Input Validation vulnerability in header parsing of Apache Tr ...)
 	- trafficserver 9.1.3+ds-1
+	NOTE: https://lists.apache.org/thread/rc64lwbdgrkv674koc3zl1sljr9vwg21
 CVE-2021-37149 (Improper Input Validation vulnerability in header parsing of Apache Tr ...)
 	{DSA-5153-1}
 	- trafficserver 9.1.1+ds-1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6935478119493b92eb2b30966884540285ae4d6d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6935478119493b92eb2b30966884540285ae4d6d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220811/1986106d/attachment-0001.htm>
