[Git][security-tracker-team/security-tracker][master] 3 commits: Fix typo in NOTE for CVE-2022-32250

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Jun 20 20:24:43 BST 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
202a42ea by Salvatore Bonaccorso at 2022-06-20T21:10:30+02:00
Fix typo in NOTE for CVE-2022-32250

- - - - -
fe2aa937 by Salvatore Bonaccorso at 2022-06-20T21:16:31+02:00
Add reference to upstream patches for CVE-2021-46784

- - - - -
56670da5 by Salvatore Bonaccorso at 2022-06-20T21:19:01+02:00
Update status for CVE-2021-40402

TTBOMK, and with
https://github.com/gerbv/gerbv/issues/80#issuecomment-1046262928 this is
not yet fixed in the 2.9.2 release according to upstream.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -4531,7 +4531,7 @@ CVE-2022-32250 (net/netfilter/nf_tables_api.c in the Linux kernel through 5.18.1
 	- linux 5.18.2-1
 	NOTE: https://www.openwall.com/lists/oss-security/2022/05/31/1
 	NOTE: https://git.kernel.org/linus/520778042ccca019f3ffa136dd0ca565c486cedd
-	NOTE: Wsa previously also tracked as CVE-2022-1966
+	NOTE: Was previously also tracked as CVE-2022-1966
 CVE-2022-32249
 	RESERVED
 CVE-2022-32248
@@ -12277,6 +12277,8 @@ CVE-2021-46784
 	- squid 5.6-1
 	- squid3 <removed>
 	NOTE: https://github.com/squid-cache/squid/security/advisories/GHSA-f5cp-6rh3-284w
+	NOTE: Squid 4: http://www.squid-cache.org/Versions/v4/changesets/SQUID-2021_7.patch
+	NOTE: Squid 5: http://www.squid-cache.org/Versions/v5/changesets/SQUID-2021_7.patch
 CVE-2022-29559
 	RESERVED
 CVE-2022-29558
@@ -55107,7 +55109,7 @@ CVE-2021-40403 (An information disclosure vulnerability exists in the pick-and-p
 	NOTE: https://github.com/gerbv/gerbv/issues/82
 	NOTE: Fixed by: https://github.com/gerbv/gerbv/commit/c32c6f9c0b5d3b0ecc33de21d8532de6c2df5878 (v2.9.1-rc.1)
 CVE-2021-40402 (An out-of-bounds read vulnerability exists in the RS-274X aperture mac ...)
-	- gerbv 2.9.2-1 (unimportant)
+	- gerbv <unfixed> (unimportant)
 	NOTE: https://github.com/gerbv/gerbv/issues/80
 	NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2021-1416
 	NOTE: Crash in GUI tool, no security impact



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/4734c76c603da22ac51669306193d60c822a219e...56670da5dc8eb3e7b17c630f1e8ba32e10608bb8

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/4734c76c603da22ac51669306193d60c822a219e...56670da5dc8eb3e7b17c630f1e8ba32e10608bb8
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220620/5364a801/attachment.htm>

More information about the debian-security-tracker-commits mailing list