[Git][security-tracker-team/security-tracker][master] tcpreplay unimportant

Moritz Muehlenhoff (@jmm) jmm at debian.org
Thu May 5 14:33:44 BST 2022



Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
976a0586 by Moritz Muehlenhoff at 2022-05-05T15:31:45+02:00
tcpreplay unimportant
libxml2 fixed in sid

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1191,7 +1191,7 @@ CVE-2022-29826
 CVE-2022-29825
 	RESERVED
 CVE-2022-29824 (In libxml2 before 2.9.14, several buffer handling functions in buf.c ( ...)
-	- libxml2 <unfixed> (bug #1010526)
+	- libxml2 2.9.14+dfsg-1 (bug #1010526)
 	NOTE: https://gitlab.gnome.org/GNOME/libxml2/-/commit/2554a2408e09f13652049e5ffb0d26196b02ebab (v2.9.14)
 	NOTE: https://gitlab.gnome.org/GNOME/libxml2/-/commit/6c283d83eccd940bcde15634ac8c7f100e3caefd (master)
 CVE-2022-29516
@@ -4895,9 +4895,10 @@ CVE-2022-28489
 CVE-2022-28488 (The function wav_format_write in libwav.c in libwav through 2017-04-20 ...)
 	TODO: check
 CVE-2022-28487 (Tcpreplay version 4.4.1 contains a memory leakage flaw in fix_ipv6_che ...)
-	- tcpreplay <unfixed>
+	- tcpreplay <unfixed> (unimportant)
 	NOTE: https://github.com/appneta/tcpreplay/issues/723
 	NOTE: https://github.com/appneta/tcpreplay/pull/720
+	NOTE: Crash in CLI tool, no security impact
 CVE-2022-28486
 	RESERVED
 CVE-2022-28485



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/976a0586433b4bab1ade3c64d9a7f89150c9e595

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/976a0586433b4bab1ade3c64d9a7f89150c9e595
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220505/960e7bfc/attachment.htm>


More information about the debian-security-tracker-commits mailing list