[Git][security-tracker-team/security-tracker][master] new radare2 issues
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Wed May 25 14:20:15 BST 2022
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
14505178 by Moritz Muehlenhoff at 2022-05-25T15:19:48+02:00
new radare2 issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -21342,6 +21342,7 @@ CVE-2022-0419 (NULL Pointer Dereference in GitHub repository radareorg/radare2 p
- radare2 <unfixed>
NOTE: https://huntr.dev/bounties/1f84e79d-70e7-4b29-8b48-a108f81c89aa
NOTE: https://github.com/radareorg/radare2/commit/feaa4e7f7399c51ee6f52deb84dc3f795b4035d6 (5.6.0)
+ NOTE: https://census-labs.com/news/2022/05/24/multiple-vulnerabilities-in-radare2/
CVE-2022-0418 (The Event List WordPress plugin before 0.8.8 does not sanitise and esc ...)
NOT-FOR-US: WordPress plugin
CVE-2022-0417 (Heap-based Buffer Overflow GitHub repository vim/vim prior to 8.2. ...)
@@ -32403,9 +32404,12 @@ CVE-2021-44977 (In iCMS <=8.0.0, a directory traversal vulnerability allows a
CVE-2021-44976
RESERVED
CVE-2021-44975 (radareorg radare2 5.5.2 is vulnerable to Buffer Overflow via /libr/cor ...)
- TODO: check
+ - radare2 <unfixed>
+ NOTE: https://census-labs.com/news/2022/05/24/multiple-vulnerabilities-in-radare2/
CVE-2021-44974
RESERVED
+ - radare2 <unfixed>
+ NOTE: https://census-labs.com/news/2022/05/24/multiple-vulnerabilities-in-radare2/C
CVE-2021-44973
RESERVED
CVE-2021-44972
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/145051789d5bbcfdf09430495bfd41fcb0079aad
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/145051789d5bbcfdf09430495bfd41fcb0079aad
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220525/86c13da7/attachment.htm>
More information about the debian-security-tracker-commits
mailing list