[Git][security-tracker-team/security-tracker][master] additional radare2 refs

Wed Jul 6 19:41:20 BST 2022


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ada44a06 by Moritz Muehlenhoff at 2022-07-06T20:40:55+02:00
additional radare2 refs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -42530,9 +42530,11 @@ CVE-2021-44976
 CVE-2021-44975 (radareorg radare2 5.5.2 is vulnerable to Buffer Overflow via /libr/cor ...)
 	- radare2 <unfixed>
 	NOTE: https://census-labs.com/news/2022/05/24/multiple-vulnerabilities-in-radare2/
+	NOTE: Fixed in 5.6.0
 CVE-2021-44974 (radareorg radare2 version 5.5.2 is vulnerable to NULL Pointer Derefere ...)
 	- radare2 <unfixed>
 	NOTE: https://census-labs.com/news/2022/05/24/multiple-vulnerabilities-in-radare2/
+	NOTE: Fixed in 5.5.4
 CVE-2021-44973
 	RESERVED
 CVE-2021-44972
@@ -44993,6 +44995,7 @@ CVE-2021-44221
 CVE-2021-4021 (A vulnerability was found in Radare2 in versions prior to 5.6.2, 5.6.0 ...)
 	- radare2 <unfixed>
 	NOTE: https://github.com/radareorg/radare2/issues/19436
+	NOTE: https://github.com/radareorg/radare2/commit/3fed0e322d9374891a3412811e5270dc535cea02
 CVE-2021-4020 (janus-gateway is vulnerable to Improper Neutralization of Input During ...)
 	- janus 0.11.5-4 (unimportant; bug #1000831)
 	NOTE: https://huntr.dev/bounties/9814baa8-7bdd-4e31-a132-d9d15653409e/



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ada44a066918019ec8d0aec1b8f08cd7de4214bf

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ada44a066918019ec8d0aec1b8f08cd7de4214bf
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220706/acc7a3e4/attachment.htm>
