[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for new heimdal issues

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Nov 15 21:40:18 GMT 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
44ffd9f0 by Salvatore Bonaccorso at 2022-11-15T22:39:43+01:00
Add Debian bug reference for new heimdal issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3325,7 +3325,7 @@ CVE-2022-44641
 	RESERVED
 CVE-2022-44640 [Invalid free in ASN.1 codec]
 	RESERVED
-	- heimdal <unfixed>
+	- heimdal <unfixed> (bug #1024187)
 	NOTE: https://github.com/heimdal/heimdal/commit/ea5ec8f174920cb80ce2b168b49195378420449e (heimdal-7.7.1)
 CVE-2022-44639
 	RESERVED
@@ -9790,7 +9790,7 @@ CVE-2022-42899 (Bentley MicroStation and MicroStation-based applications may be
 	NOT-FOR-US: Bentley
 CVE-2022-42898 [krb5_pac_parse() buffer parsing vulnerability]
 	RESERVED
-	- heimdal <unfixed>
+	- heimdal <unfixed> (bug #1024187)
 	- krb5 <unfixed>
 	- samba 2:4.17.3+dfsg-1
 	NOTE: https://www.samba.org/samba/security/CVE-2022-42898.html
@@ -10337,7 +10337,7 @@ CVE-2022-42704
 CVE-2022-3437 [Buffer overflow in Heimdal unwrap_des3()]
 	RESERVED
 	- samba 2:4.16.6+dfsg-1
-	- heimdal <unfixed>
+	- heimdal <unfixed> (bug #1024187)
 	NOTE: https://www.samba.org/samba/security/CVE-2022-3437.html
 	NOTE: https://bugzilla.samba.org/show_bug.cgi?id=15134
 	NOTE: https://github.com/heimdal/heimdal/commit/f6edaafcfefd843ca1b1a041f942a853d85ee7c3 (heimdal-7.7.1)
@@ -73758,7 +73758,7 @@ CVE-2021-4081 (pimcore is vulnerable to Improper Neutralization of Input During
 	NOT-FOR-US: Pimcore
 CVE-2021-44758 [spnego: send_reject when no mech selected]
 	RESERVED
-	- heimdal <unfixed>
+	- heimdal <unfixed> (bug #1024187)
 	NOTE: https://github.com/heimdal/heimdal/commit/f9ec7002cdd526ae84fbacbf153162e118f22580 (heimdal-7.7.1)
 CVE-2021-44757 (Zoho ManageEngine Desktop Central before 10.1.2137.9 and Desktop Centr ...)
 	NOT-FOR-US: Zoho ManageEngine



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/44ffd9f021b86a3affaad9af75502b26cafba187

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/44ffd9f021b86a3affaad9af75502b26cafba187
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221115/c8c4697d/attachment.htm>

More information about the debian-security-tracker-commits mailing list