[Git][security-tracker-team/security-tracker][master] Add CVE-2022-256{39,40}/wolfssl
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Feb 24 08:37:36 GMT 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
2c3c8569 by Salvatore Bonaccorso at 2022-02-24T09:37:11+01:00
Add CVE-2022-256{39,40}/wolfssl
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -455,11 +455,17 @@ CVE-2022-25642
CVE-2022-25641
RESERVED
CVE-2022-25640 (In wolfSSL before 5.2.0, a TLS 1.3 server cannot properly enforce a re ...)
- TODO: check
+ - wolfssl 5.2.0-1
+ NOTE: https://github.com/wolfSSL/wolfssl/pull/4831
+ NOTE: https://github.com/wolfSSL/wolfssl/commit/3cdb1c639da94a9dc8c75590d0ec475e7f27c226 (v5.2.0-stable)
+ NOTE: https://github.com/wolfSSL/wolfssl/commit/b60d2dccce9110fd2b985d99063e524e39bdf6f7 (v5.2.0-stable)
CVE-2022-25639
RESERVED
CVE-2022-25638 (In wolfSSL before 5.2.0, certificate validation may be bypassed during ...)
- TODO: check
+ - wolfssl 5.2.0-1
+ NOTE: https://github.com/wolfSSL/wolfssl/pull/4813
+ NOTE: https://github.com/wolfSSL/wolfssl/commit/e13861bcde8015bb99ddb034224afb66e2fb89b8 (v5.2.0-stable)
+ NOTE: https://github.com/wolfSSL/wolfssl/commit/08047b2d959ee5e21a4a2c672308f45fec61f059 (v5.2.0-stable)
CVE-2022-25637
RESERVED
CVE-2022-25635
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2c3c8569138e9b46d4a685714065fea3e45eb0f3
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2c3c8569138e9b46d4a685714065fea3e45eb0f3
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220224/21668d59/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list