[Git][security-tracker-team/security-tracker][master] 2 commits: Add libxml2 to dla-needed.txt

Sat Oct 29 21:43:23 BST 2022


Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4da53d3a by Markus Koschany at 2022-10-29T22:42:01+02:00
Add libxml2 to dla-needed.txt

- - - - -
f86442f8 by Markus Koschany at 2022-10-29T22:42:36+02:00
CVE-2022-41973 CVE-2022-41974,multipath-tools: Link to upstream pull request

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -6868,10 +6868,12 @@ CVE-2022-41974 (multipath-tools 0.7.0 through 0.9.x before 0.9.2 allows local us
 	- multipath-tools <unfixed> (bug #1022742)
 	NOTE: https://www.openwall.com/lists/oss-security/2022/10/24/2
 	NOTE: Introduced by: https://github.com/opensvc/multipath-tools/commit/9acda0c47b143f2ef6123957d2ccd24ea995dc04 (0.7.0)
+	NOTE: Fixed by https://github.com/opensvc/multipath-tools/pull/46
 CVE-2022-41973 (multipath-tools 0.7.7 through 0.9.x before 0.9.2 allows local users to ...)
 	- multipath-tools <unfixed> (bug #1022742)
 	NOTE: https://www.openwall.com/lists/oss-security/2022/10/24/2
 	NOTE: Introduced by: https://github.com/opensvc/multipath-tools/commit/65d0a633e066223d361cd1a254ebdfe36a133a5c (0.7.7)
+	NOTE: Fixed by https://github.com/opensvc/multipath-tools/pull/46
 CVE-2022-41972
 	RESERVED
 CVE-2022-41971


=====================================
data/dla-needed.txt
=====================================
@@ -99,6 +99,10 @@ libcommons-jxpath-java
 libreoffice
   NOTE: 20221012: Programming language: C++.
 --
+libxml2
+  NOTE: 20221029: Programming language: C.
+  NOTE: 20221029: VCS: https://salsa.debian.org/lts-team/packages/libxml2.git
+--
 linux (Ben Hutchings)
 --
 man2html



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/54cf109929016d45487607b571d907e1f963ae7b...f86442f8c05db163177dacbd262a7c14be400c52

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/54cf109929016d45487607b571d907e1f963ae7b...f86442f8c05db163177dacbd262a7c14be400c52
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221029/3143a7cf/attachment.htm>
