[Git][security-tracker-team/security-tracker][master] Add CVE-2022-45197/slixmpp

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5bf41a52 by Salvatore Bonaccorso at 2022-11-29T08:40:48+01:00
Add CVE-2022-45197/slixmpp

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2970,8 +2970,10 @@ CVE-2022-3964 (A vulnerability classified as problematic has been found in ffmpe
 	[bullseye] - ffmpeg <postponed> (Wait until it lands in 4.1.x)
 	[buster] - ffmpeg <postponed> (Wait until it lands in 4.1.x)
 	NOTE: https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/92f9b28ed84a77138105475beba16c146bdaf984
-CVE-2022-45197
+CVE-2022-45197 [missing certificate hostname validation]
 	RESERVED
+	- slixmpp 1.8.3-1
+	NOTE: https://lab.louiz.org/poezio/slixmpp/-/commit/b60b1b985db928532f97c4f61d6fbc801f0aa7fa (slix-1.8.3)
 CVE-2022-45196 (Hyperledger Fabric 2.3 allows attackers to cause a denial of service ( ...)
 	NOT-FOR-US: Hyperledger Fabric
 CVE-2022-45195 (SimpleXMQ before 3.4.0, as used in SimpleX Chat before 4.2, does not a ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5bf41a52a6b6b042b7dbae8037ac845a16cd2184

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5bf41a52a6b6b042b7dbae8037ac845a16cd2184
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221129/40354e07/attachment.htm>