[Git][security-tracker-team/security-tracker][master] Add two new netty issues
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Dec 14 09:03:16 GMT 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0fffabc2 by Salvatore Bonaccorso at 2022-12-14T10:02:42+01:00
Add two new netty issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -18074,7 +18074,8 @@ CVE-2022-41916 (Heimdal is an implementation of ASN.1/DER, PKIX, and Kerberos. V
NOTE: https://github.com/heimdal/heimdal/security/advisories/GHSA-mgqr-gvh6-23cx
NOTE: https://github.com/heimdal/heimdal/commit/eb87af0c2d189c25294c7daf483a47b03af80c2c (heimdal-7.7.1)
CVE-2022-41915 (Netty project is an event-driven asynchronous network application fram ...)
- TODO: check
+ - netty <unfixed>
+ NOTE: https://github.com/netty/netty/security/advisories/GHSA-hh82-3pmq-7frp
CVE-2022-41914 (Zulip is an open-source team collaboration tool. For organizations wit ...)
NOT-FOR-US: Zulip
CVE-2022-41913 (Discourse-calendar is a plugin for the Discourse messaging platform wh ...)
@@ -18149,7 +18150,8 @@ CVE-2022-41882 (The Nextcloud Desktop Client is a tool to synchronize files from
NOTE: https://github.com/nextcloud/server/pull/34559
TODO: check details, is owncloud-client similarly affected?
CVE-2022-41881 (Netty project is an event-driven asynchronous network application fram ...)
- TODO: check
+ - netty <unfixed>
+ NOTE: https://github.com/netty/netty/security/advisories/GHSA-fx2c-96vj-985v
CVE-2022-41880 (TensorFlow is an open source platform for machine learning. When the ` ...)
- tensorflow <itp> (bug #804612)
CVE-2022-41879 (Parse Server is an open source backend that can be deployed to any inf ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0fffabc2beb3ced4de101b3daa68b4c1e1fae72a
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0fffabc2beb3ced4de101b3daa68b4c1e1fae72a
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221214/b89494e5/attachment.htm>
More information about the debian-security-tracker-commits
mailing list