[Git][security-tracker-team/security-tracker][master] Process two CVEs for vim
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Jun 24 09:54:11 BST 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
4ad29d87 by Salvatore Bonaccorso at 2022-06-24T10:52:06+02:00
Process two CVEs for vim
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -297,9 +297,17 @@ CVE-2022-2185
CVE-2022-2184
RESERVED
CVE-2022-2183 (Out-of-bounds Read in GitHub repository vim/vim prior to 8.2. ...)
- TODO: check
+ - vim <unfixed>
+ [bullseye] - vim <no-dsa> (Minor issue)
+ [buster] - vim <no-dsa> (Minor issue)
+ NOTE: https://huntr.dev/bounties/d74ca3f9-380d-4c0a-b61c-11113cc98975
+ NOTE: https://github.com/vim/vim/commit/8eba2bd291b347e3008aa9e565652d51ad638cfa (v8.2.5151)
CVE-2022-2182 (Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. ...)
- TODO: check
+ - vim <unfixed>
+ [bullseye] - vim <no-dsa> (Minor issue)
+ [buster] - vim <no-dsa> (Minor issue)
+ NOTE: https://huntr.dev/bounties/238d8650-3beb-4831-a8f7-6f0b597a6fb8
+ NOTE: https://github.com/vim/vim/commit/f7c7c3fad6d2135d558f3b36d0d1a943118aeb5e (v8.2.5150)
CVE-2022-2181
RESERVED
CVE-2021-46824 (Cross Site Scripting (XSS) vulnerability in sourcecodester School File ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4ad29d87a634f1953433261a5dcec7eddc57ef80
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4ad29d87a634f1953433261a5dcec7eddc57ef80
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220624/63222674/attachment.htm>
More information about the debian-security-tracker-commits
mailing list