[Git][security-tracker-team/security-tracker][master] Update information for CVE-2022-41556

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Oct 3 20:09:02 BST 2022



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
748bd05a by Salvatore Bonaccorso at 2022-10-03T21:08:35+02:00
Update information for CVE-2022-41556

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1576,7 +1576,8 @@ CVE-2022-41556 [handle RDHUP when collecting chunked body]
 	- lighttpd 1.4.67-1
 	[buster] - lighttpd <not-affected> (vulnerable code inserted in lighttpd-1.4.55-211-gbcddbe18)
 	NOTE: https://github.com/lighttpd/lighttpd1.4/pull/115
-	NOTE: https://github.com/lighttpd/lighttpd1.4/commit/b18de6f9264f914f7bf493abd3b6059343548e50 (lighttpd-1.4.67)
+	NOTE: Introduced by: https://github.com/lighttpd/lighttpd1.4/commit/bcddbe186f010e2964f7551141c0b8350b36817d (lighttpd-1.4.56-rc1)
+	NOTE: Fixed by: https://github.com/lighttpd/lighttpd1.4/commit/b18de6f9264f914f7bf493abd3b6059343548e50 (lighttpd-1.4.67)
 CVE-2022-40690
 	RESERVED
 CVE-2022-3322



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/748bd05a92e0e3e8dc86cfb82dc0925d92d4bd3f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/748bd05a92e0e3e8dc86cfb82dc0925d92d4bd3f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221003/29988eeb/attachment-0001.htm>


More information about the debian-security-tracker-commits mailing list