[Git][security-tracker-team/security-tracker][master] Add CVE-2022-4843/radare2
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Dec 29 20:17:35 GMT 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a48f466e by Salvatore Bonaccorso at 2022-12-29T21:17:04+01:00
Add CVE-2022-4843/radare2
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -73,7 +73,10 @@ CVE-2022-4845 (Cross-Site Request Forgery (CSRF) in GitHub repository usememos/m
CVE-2022-4844 (Cross-Site Request Forgery (CSRF) in GitHub repository usememos/memos ...)
NOT-FOR-US: usememos
CVE-2022-4843 (NULL Pointer Dereference in GitHub repository radareorg/radare2 prior ...)
- TODO: check
+ - radare2 <undetermined>
+ NOTE: https://huntr.dev/bounties/075b2760-66a0-4d38-b3b5-e9934956ab7f
+ NOTE: https://github.com/radareorg/radare2/commit/842f809d4ec6a12af2906f948657281c9ebc8a24
+ TODO: check, possibly introduced later as released version in unstable (5.5.0+dfsg-1)
CVE-2022-4842
RESERVED
CVE-2022-4841 (Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memo ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a48f466e292c526d8ffdc5526d7762320fd85f69
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a48f466e292c526d8ffdc5526d7762320fd85f69
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221229/48a73eb3/attachment.htm>
More information about the debian-security-tracker-commits
mailing list