[Git][security-tracker-team/security-tracker][master] Update information for CVE-2022-29242/libengine-gost-openssl1.1

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
220cec9c by Salvatore Bonaccorso at 2022-05-26T21:02:07+02:00
Update information for CVE-2022-29242/libengine-gost-openssl1.1

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -6949,7 +6949,11 @@ CVE-2022-29244
 CVE-2022-29243
 	RESERVED
 CVE-2022-29242 (GOST engine is a reference implementation of the Russian GOST crypto a ...)
-	NOT-FOR-US: gost-engine/engine
+	- libengine-gost-openssl1.1 <unfixed>
+	NOTE: https://github.com/gost-engine/engine/security/advisories/GHSA-2rmw-8wpg-vgw5
+	NOTE: https://github.com/gost-engine/engine/commit/7df766124f87768b43b9e8947c5a01e17545772c (v3.0.1)
+	NOTE: https://github.com/gost-engine/engine/commit/b2b4d629f100eaee9f5942a106b1ccefe85b8808 (v3.0.1)
+	NOTE: https://github.com/gost-engine/engine/commit/c6655a0b620a3e31f085cc906f8073fe81b2fad3 (v3.0.1)
 CVE-2022-29241
 	RESERVED
 CVE-2022-29240



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/220cec9c03fc7e83836a6e424da9f8096e966753

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/220cec9c03fc7e83836a6e424da9f8096e966753
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220526/ff76653e/attachment.htm>