[Git][security-tracker-team/security-tracker][master] Add CVE-2022-0570/mruby
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Feb 13 19:10:45 GMT 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
50b11236 by Salvatore Bonaccorso at 2022-02-13T20:10:15+01:00
Add CVE-2022-0570/mruby
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -19,7 +19,9 @@ CVE-2022-0572
CVE-2022-0571
RESERVED
CVE-2022-0570 (Heap-based Buffer Overflow in Homebrew mruby prior to 3.2. ...)
- TODO: check
+ - mruby <not-affected> (Vulnerable code introduced later)
+ NOTE: https://huntr.dev/bounties/65a7632e-f95b-4836-b1a7-9cb95e5124f1
+ NOTE: https://github.com/mruby/mruby/commit/38b164ace7d6ae1c367883a3d67d7f559783faad
CVE-2022-0569 (Exposure of Sensitive Information to an Unauthorized Actor in Packagis ...)
TODO: check
CVE-2022-24975 (The --mirror documentation for Git through 2.35.1 does not mention the ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/50b112369a1b9fc505b5b1ef948dfb04a075edee
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/50b112369a1b9fc505b5b1ef948dfb04a075edee
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220213/ad42df31/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list