[Git][security-tracker-team/security-tracker][master] new apache2 issues
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Wed Jun 8 12:06:19 BST 2022
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
1d2365a3 by Moritz Muehlenhoff at 2022-06-08T13:05:56+02:00
new apache2 issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1824,6 +1824,8 @@ CVE-2022-1946
RESERVED
CVE-2022-31813
RESERVED
+ - apache2 <unfixed>
+ NOTE: https://httpd.apache.org/security/vulnerabilities_24.html
CVE-2022-31812
RESERVED
CVE-2022-31811
@@ -5436,6 +5438,8 @@ CVE-2022-30594 (The Linux kernel before 5.17.2 mishandles seccomp permissions. T
NOTE: https://git.kernel.org/linus/ee1fee900537b5d9560e9f937402de5ddc8412f3 (5.18-rc1)
CVE-2022-30556
RESERVED
+ - apache2 <unfixed>
+ NOTE: https://httpd.apache.org/security/vulnerabilities_24.html
CVE-2022-30555
RESERVED
CVE-2022-30554
@@ -5608,6 +5612,8 @@ CVE-2022-30523 (Trend Micro Password Manager (Consumer) version 5.0.0.1266 and b
NOT-FOR-US: Trend Micro
CVE-2022-30522
RESERVED
+ - apache2 <unfixed>
+ NOTE: https://httpd.apache.org/security/vulnerabilities_24.html
CVE-2022-1642
RESERVED
CVE-2022-1641
@@ -8908,6 +8914,8 @@ CVE-2022-1382 (NULL Pointer Dereference in GitHub repository radareorg/radare2 p
NOTE: https://github.com/radareorg/radare2/commit/48f0ea79f99174fb0a62cb2354e13496ce5b7c44
CVE-2022-29404
RESERVED
+ - apache2 <unfixed>
+ NOTE: https://httpd.apache.org/security/vulnerabilities_24.html
CVE-2022-1381 (global heap buffer overflow in skip_range in GitHub repository vim/vim ...)
- vim 2:8.2.4793-1
[bullseye] - vim <no-dsa> (Minor issue)
@@ -11104,8 +11112,12 @@ CVE-2022-28616 (A remote server-side request forgery (ssrf) vulnerability was di
NOT-FOR-US: HPE OneView
CVE-2022-28615
RESERVED
+ - apache2 <unfixed>
+ NOTE: https://httpd.apache.org/security/vulnerabilities_24.html
CVE-2022-28614
RESERVED
+ - apache2 <unfixed>
+ NOTE: https://httpd.apache.org/security/vulnerabilities_24.html
CVE-2022-28613 (A vulnerability in the HCI Modbus TCP COMPONENT of Hitachi Energy RTU5 ...)
NOT-FOR-US: HCI Modbus TCP COMPONENT of Hitachi Energy RTU500 series CMU Firmware
CVE-2022-28610
@@ -11807,6 +11819,8 @@ CVE-2022-28331
RESERVED
CVE-2022-28330
RESERVED
+ - apache2 <not-affected> (Windows specific)
+ NOTE: https://httpd.apache.org/security/vulnerabilities_24.html
CVE-2022-28329 (A vulnerability has been identified in SCALANCE W1788-1 M12 (All versi ...)
NOT-FOR-US: Siemens SCALANCE
CVE-2022-28328 (A vulnerability has been identified in SCALANCE W1788-1 M12 (All versi ...)
@@ -17580,6 +17594,8 @@ CVE-2022-26378
RESERVED
CVE-2022-26377
RESERVED
+ - apache2 <unfixed>
+ NOTE: https://httpd.apache.org/security/vulnerabilities_24.html
CVE-2022-26073 (A denial of service vulnerability exists in the libxm_av.so DemuxCmdIn ...)
NOT-FOR-US: Anker Eufy Homebase
CVE-2022-25989 (An authentication bypass vulnerability exists in the libxm_av.so getpe ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1d2365a3311442d9ec028b8a267c64a03e59807d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1d2365a3311442d9ec028b8a267c64a03e59807d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220608/4c26e1cd/attachment.htm>
More information about the debian-security-tracker-commits
mailing list