[Git][security-tracker-team/security-tracker][master] Update information for CVE-2022-23613/xrdp

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e26d29c4 by Salvatore Bonaccorso at 2022-02-08T10:24:39+01:00
Update information for CVE-2022-23613/xrdp

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3444,8 +3444,12 @@ CVE-2022-23614 (Twig is an open source template language for PHP. When in a sand
 	TODO: check
 CVE-2022-23613 (xrdp is an open source remote desktop protocol (RDP) server. In affect ...)
 	- xrdp <unfixed>
+	[bullseye] - xrdp <not-affected> (Vulnerable code not present)
+	[buster] - xrdp <not-affected> (Vulnerable code not present)
+	[stretch] - xrdp <not-affected> (Vulnerable code not present)
 	NOTE: https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-8h98-h426-xf32
-	NOTE: https://github.com/neutrinolabs/xrdp/commit/4def30ab8ea445cdc06832a44c3ec40a506a0ffa
+	NOTE: Introduced by: https://github.com/neutrinolabs/xrdp/commit/738e346f810c97d578df9e99a36520616ee201be (v0.9.17)
+	NOTE: Fixed by: https://github.com/neutrinolabs/xrdp/commit/4def30ab8ea445cdc06832a44c3ec40a506a0ffa
 CVE-2022-23612
 	RESERVED
 CVE-2022-23611 (iTunesRPC-Remastered is a Discord Rich Presence for iTunes on Windows  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e26d29c4e70b631e09e71124960cebd726422fb2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e26d29c4e70b631e09e71124960cebd726422fb2
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220208/2c7e6108/attachment-0001.htm>