[Git][security-tracker-team/security-tracker][master] Add CVE-2022-1071/mruby
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Mar 27 20:11:12 BST 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
c2e864e1 by Salvatore Bonaccorso at 2022-03-27T21:10:29+02:00
Add CVE-2022-1071/mruby
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -266,7 +266,10 @@ CVE-2022-27494
CVE-2022-26423
RESERVED
CVE-2022-1071 (User after free in mrb_vm_exec in GitHub repository mruby/mruby prior ...)
- TODO: check
+ - mruby <undetermined>
+ NOTE: https://huntr.dev/bounties/6597ece9-07af-415b-809b-919ce0a17cf3
+ NOTE: https://github.com/mruby/mruby/commit/aaa28a508903041dd7399d4159a8ace9766b022f
+ TODO: check where issue introduced and present before code refactoring
CVE-2022-1070
RESERVED
CVE-2022-1069
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c2e864e1b3bfce4c4e17daeb70a9bafcccd0e7d4
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c2e864e1b3bfce4c4e17daeb70a9bafcccd0e7d4
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220327/272953dd/attachment.htm>
More information about the debian-security-tracker-commits
mailing list