[Git][security-tracker-team/security-tracker][master] 2 commits: Reference upstream tag information for two openssl commits

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Nov 1 16:53:02 GMT 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a416f4f0 by Salvatore Bonaccorso at 2022-11-01T17:49:21+01:00
Reference upstream tag information for two openssl commits

- - - - -
49a622a5 by Salvatore Bonaccorso at 2022-11-01T17:52:31+01:00
Add CVE-2022-42327/xen

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3,7 +3,7 @@ CVE-2022-3786
 	[bullseye] - openssl <not-affected> (Only affects 3.x)
 	[buster] - openssl <not-affected> (Only affects 3.x)
 	NOTE: https://www.openssl.org/news/secadv/20221011.txt
-	NOTE: https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=c42165b5706e42f67ef8ef4c351a9a4c5d21639a
+	NOTE: https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=c42165b5706e42f67ef8ef4c351a9a4c5d21639a (openssl-3.0.7)
 CVE-2022-44563
 	RESERVED
 CVE-2022-44562
@@ -4513,7 +4513,7 @@ CVE-2022-3602
 	[bullseye] - openssl <not-affected> (Only affects 3.0)
 	[buster] - openssl <not-affected> (Only affects 3.0)
 	NOTE: https://www.openssl.org/news/secadv/20221101.txt
-	NOTE: https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=fe3b639dc19b325846f4f6801f2f4604f56e3de3
+	NOTE: https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=fe3b639dc19b325846f4f6801f2f4604f56e3de3 (openssl-3.0.7)
 CVE-2022-3601
 	RESERVED
 CVE-2022-3600
@@ -7377,6 +7377,10 @@ CVE-2022-42328
 	RESERVED
 CVE-2022-42327
 	RESERVED
+	- xen <unfixed>
+	[bullseye] - xen <not-affected> (Vulnerable code introduced later in 4.16)
+	[buster] - xen <not-affected> (Vulnerable code introduced later in 4.16)
+	NOTE: https://xenbits.xen.org/xsa/advisory-412.html
 CVE-2022-42326
 	RESERVED
 CVE-2022-42325



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/cc17fc41d808d1e3ab77be3f2a4ae172fac54215...49a622a5131baa76b6d72d0da29437329c91a034

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/cc17fc41d808d1e3ab77be3f2a4ae172fac54215...49a622a5131baa76b6d72d0da29437329c91a034
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221101/68b8e497/attachment.htm>

More information about the debian-security-tracker-commits mailing list