[Git][security-tracker-team/security-tracker][master] Track fix via experimental for CVE-2022-2347/u-boot
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Dec 6 21:56:00 GMT 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
2504fd7b by Salvatore Bonaccorso at 2022-12-06T22:55:23+01:00
Track fix via experimental for CVE-2022-2347/u-boot
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -33043,10 +33043,12 @@ CVE-2022-2349
CVE-2022-2348
RESERVED
CVE-2022-2347 (There exists an unchecked length field in UBoot. The U-Boot DFU implem ...)
+ [experimental] - u-boot 2023.01~rc2+dfsg-1
- u-boot <unfixed> (bug #1014959)
[bullseye] - u-boot <no-dsa> (Minor issue)
[buster] - u-boot <no-dsa> (Minor issue)
NOTE: https://www.openwall.com/lists/oss-security/2022/07/08/2
+ NOTE: https://source.denx.de/u-boot/u-boot/-/commit/fbce985e28eaca3af82afecc11961aadaf971a7e (v2023.01-rc2)
CVE-2022-35399
REJECTED
CVE-2022-35398
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2504fd7b0ca92dfffe24c1ce4e31d4cedf12834d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2504fd7b0ca92dfffe24c1ce4e31d4cedf12834d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221206/f03174f0/attachment.htm>
More information about the debian-security-tracker-commits
mailing list