[Git][security-tracker-team/security-tracker][master] Track fixed version for various heimdal issues fixed via unstable

Sun Nov 27 19:23:14 GMT 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
dfe99cca by Salvatore Bonaccorso at 2022-11-27T20:22:27+01:00
Track fixed version for various heimdal issues fixed via unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -4702,7 +4702,7 @@ CVE-2022-44641 (In Linaro Automated Validation Architecture (LAVA) before 2022.1
 CVE-2022-44640 [Invalid free in ASN.1 codec]
 	RESERVED
 	{DSA-5287-1 DLA-3206-1}
-	- heimdal <unfixed> (bug #1024187)
+	- heimdal 7.8.git20221115.a6cf945+dfsg-1 (bug #1024187)
 	NOTE: https://github.com/heimdal/heimdal/security/advisories/GHSA-88pm-hfmq-7vv4
 	NOTE: https://github.com/heimdal/heimdal/commit/ea5ec8f174920cb80ce2b168b49195378420449e (heimdal-7.7.1)
 CVE-2022-44639
@@ -11168,7 +11168,7 @@ CVE-2022-42899 (Bentley MicroStation and MicroStation-based applications may be
 CVE-2022-42898 [krb5_pac_parse() buffer parsing vulnerability]
 	RESERVED
 	{DSA-5287-1 DSA-5286-1 DLA-3206-1}
-	- heimdal <unfixed> (bug #1024187)
+	- heimdal 7.8.git20221115.a6cf945+dfsg-1 (bug #1024187)
 	- krb5 1.20.1-1 (bug #1024267)
 	- samba 2:4.17.3+dfsg-1
 	NOTE: https://www.samba.org/samba/security/CVE-2022-42898.html
@@ -11717,7 +11717,7 @@ CVE-2022-3437 [Buffer overflow in Heimdal unwrap_des3()]
 	RESERVED
 	{DSA-5287-1 DLA-3206-1}
 	- samba 2:4.16.6+dfsg-1
-	- heimdal <unfixed> (bug #1024187)
+	- heimdal 7.8.git20221115.a6cf945+dfsg-1 (bug #1024187)
 	NOTE: https://www.samba.org/samba/security/CVE-2022-3437.html
 	NOTE: https://bugzilla.samba.org/show_bug.cgi?id=15134
 	NOTE: https://github.com/heimdal/heimdal/security/advisories/GHSA-45j3-5v39-rf9j
@@ -13508,7 +13508,7 @@ CVE-2022-41917 (OpenSearch is a community-driven, open source fork of Elasticsea
 	NOT-FOR-US: OpenSearch
 CVE-2022-41916 (Heimdal is an implementation of ASN.1/DER, PKIX, and Kerberos. Version ...)
 	{DSA-5287-1 DLA-3206-1}
-	- heimdal <unfixed> (bug #1024187)
+	- heimdal 7.8.git20221115.a6cf945+dfsg-1 (bug #1024187)
 	NOTE: https://github.com/heimdal/heimdal/security/advisories/GHSA-mgqr-gvh6-23cx
 	NOTE: https://github.com/heimdal/heimdal/commit/eb87af0c2d189c25294c7daf483a47b03af80c2c (heimdal-7.7.1)
 CVE-2022-41915
@@ -75254,7 +75254,7 @@ CVE-2021-4081 (pimcore is vulnerable to Improper Neutralization of Input During
 CVE-2021-44758 [spnego: send_reject when no mech selected]
 	RESERVED
 	{DSA-5287-1 DLA-3206-1}
-	- heimdal <unfixed> (bug #1024187)
+	- heimdal 7.8.git20221115.a6cf945+dfsg-1 (bug #1024187)
 	NOTE: https://github.com/heimdal/heimdal/security/advisories/GHSA-69h9-669w-88xv
 	NOTE: https://github.com/heimdal/heimdal/commit/f9ec7002cdd526ae84fbacbf153162e118f22580 (heimdal-7.7.1)
 CVE-2021-44757 (Zoho ManageEngine Desktop Central before 10.1.2137.9 and Desktop Centr ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dfe99ccabc00a38667788bfa7a77d8b6b204cf5c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dfe99ccabc00a38667788bfa7a77d8b6b204cf5c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221127/9623c040/attachment.htm>
