[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2022-29154/rsync via unstable
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Aug 16 19:54:40 BST 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
b1ca95c3 by Salvatore Bonaccorso at 2022-08-16T20:53:45+02:00
Track fixed version for CVE-2022-29154/rsync via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -24696,7 +24696,7 @@ CVE-2022-29155 (In OpenLDAP 2.x before 2.5.12 and 2.6.x before 2.6.2, a SQL inje
NOTE: https://git.openldap.org/openldap/openldap/-/commit/40f3ae4f5c9a8baf75b237220f62c436a571d66e (OPENLDAP_REL_ENG_2_5_12)
NOTE: back-sql backend to slapd is enabled but considered experimental upstream.
CVE-2022-29154 (An issue was discovered in rsync before 3.2.5 that allows malicious re ...)
- - rsync <unfixed> (bug #1016543)
+ - rsync 3.2.5-1 (bug #1016543)
[bullseye] - rsync <no-dsa> (Minor issue; for untrusted remote sending hosts additional protective measures can be taken)
NOTE: https://www.openwall.com/lists/oss-security/2022/08/02/1
NOTE: https://git.samba.org/?p=rsync.git;a=commit;h=b7231c7d02cfb65d291af74ff66e7d8c507ee871 (v3.2.5pre1)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b1ca95c370c01102aea3dfb9034484be03609c42
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b1ca95c370c01102aea3dfb9034484be03609c42
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220816/37f10da4/attachment.htm>
More information about the debian-security-tracker-commits
mailing list