[Git][security-tracker-team/security-tracker][master] CVE-2021-42612,3,4/halibut 1.3-1
Neil Williams (@codehelp)
codehelp at debian.org
Wed May 25 15:43:42 BST 2022
Neil Williams pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a9bff340 by Neil Williams at 2022-05-25T15:42:53+01:00
CVE-2021-42612,3,4/halibut 1.3-1
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -41428,11 +41428,14 @@ CVE-2021-42616
CVE-2021-42615
RESERVED
CVE-2021-42614 (A use after free in info_width_internal in bk_info.c in Halibut 1.2 al ...)
- TODO: check
+ - halibut 1.3-1 (bug #898928)
+ NOTE: https://carteryagemann.com/halibut-case-study.html#poc-halibut-info-uaf
CVE-2021-42613 (A double free in cleanup_index in index.c in Halibut 1.2 allows an att ...)
- TODO: check
+ - halibut 1.3-1 (bug #898928)
+ NOTE: https://carteryagemann.com/halibut-case-study.html#poc-halibut-winhelp-df
CVE-2021-42612 (A use after free in cleanup_index in index.c in Halibut 1.2 allows an ...)
- TODO: check
+ - halibut 1.3-1 (bug #898928)
+ NOTE: https://carteryagemann.com/halibut-case-study.html#poc-halibut-text-uaf
CVE-2021-42611
RESERVED
CVE-2021-42610
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a9bff340f51c5c4f4c0d68b97cd38d7e691ca82a
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a9bff340f51c5c4f4c0d68b97cd38d7e691ca82a
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220525/5baee009/attachment.htm>
More information about the debian-security-tracker-commits
mailing list