[Git][security-tracker-team/security-tracker][master] Track fixed version for two CVEs for mruby via unstable

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2dbbc3e1 by Salvatore Bonaccorso at 2022-05-09T08:49:57+02:00
Track fixed version for two CVEs for mruby via unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -4055,7 +4055,7 @@ CVE-2022-1288 (A vulnerability, which was classified as problematic, has been fo
 CVE-2022-1287 (A vulnerability classified as critical was found in School Club Applic ...)
 	NOT-FOR-US: School Club Application System
 CVE-2022-1286 (heap-buffer-overflow in mrb_vm_exec in mruby/mruby in GitHub repositor ...)
-	- mruby <unfixed>
+	- mruby 3.0.0-4
 	[bullseye] - mruby <no-dsa> (Minor issue)
 	[buster] - mruby <no-dsa> (Minor issue)
 	[stretch] - mruby <not-affected> (Vulnerable code not present)
@@ -5323,7 +5323,7 @@ CVE-2022-1214
 CVE-2022-1213 (SSRF filter bypass port 80, 433 in GitHub repository livehelperchat/li ...)
 	NOT-FOR-US: livehelperchat
 CVE-2022-1212 (Use-After-Free in str_escape in mruby/mruby in GitHub repository mruby ...)
-	- mruby <unfixed> (bug #1009044)
+	- mruby 3.0.0-4 (bug #1009044)
 	[bullseye] - mruby <no-dsa> (Minor issue)
 	[buster] - mruby <no-dsa> (Minor issue)
 	[stretch] - mruby <not-affected> (Vulnerable code not present)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2dbbc3e105d68e9423d2cfd5faee3fa3ec38da94

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2dbbc3e105d68e9423d2cfd5faee3fa3ec38da94
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220509/531a8937/attachment.htm>