[Git][security-tracker-team/security-tracker][master] Update information on CVE-2022-279{39,40,41,42}/tcpreplay
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Mar 27 12:37:02 BST 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
9c2e5279 by Salvatore Bonaccorso at 2022-03-27T13:36:26+02:00
Update information on CVE-2022-279{39,40,41,42}/tcpreplay
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -17,17 +17,21 @@ CVE-2022-27944
CVE-2022-27943 (libiberty/rust-demangle.c in GNU GCC 11.2 allows stack consumption in ...)
TODO: check
CVE-2022-27942 (tcpprep in Tcpreplay 4.4.1 has a heap-based buffer over-read in parse_ ...)
- - tcpreplay <unfixed>
+ - tcpreplay <unfixed> (unimportant)
NOTE: https://github.com/appneta/tcpreplay/issues/719
+ NOTE: Crash in CLI tool, no security impact
CVE-2022-27941 (tcprewrite in Tcpreplay 4.4.1 has a heap-based buffer over-read in get ...)
- - tcpreplay <unfixed>
+ - tcpreplay <unfixed> (unimportant)
NOTE: https://github.com/appneta/tcpreplay/issues/716
+ NOTE: Crash in CLI tool, no security impact
CVE-2022-27940 (tcprewrite in Tcpreplay 4.4.1 has a heap-based buffer over-read in get ...)
- - tcpreplay <unfixed>
+ - tcpreplay <unfixed> (unimportant)
NOTE: https://github.com/appneta/tcpreplay/issues/718
+ NOTE: Crash in CLI tool, no security impact
CVE-2022-27939 (tcprewrite in Tcpreplay 4.4.1 has a reachable assertion in get_layer4_ ...)
- - tcpreplay <unfixed>
+ - tcpreplay <unfixed> (unimportant)
NOTE: https://github.com/appneta/tcpreplay/issues/717
+ NOTE: Crash in CLI tool, no security impact
CVE-2022-27938 (stb_image.h (aka the stb image loader) 2.19, as used in libsixel and o ...)
TODO: check
CVE-2022-27937
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9c2e527913bf75c2f525873eca8d3957b9e80f2b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9c2e527913bf75c2f525873eca8d3957b9e80f2b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220327/551e15de/attachment.htm>
More information about the debian-security-tracker-commits
mailing list