[Git][security-tracker-team/security-tracker][master] CVE-2022-41973: Add comment on switching to /run instead of /dev/shm

Sun Oct 30 07:17:55 GMT 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
223e6a17 by Salvatore Bonaccorso at 2022-10-30T08:17:22+01:00
CVE-2022-41973: Add comment on switching to /run instead of /dev/shm

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -6887,6 +6887,8 @@ CVE-2022-41973 (multipath-tools 0.7.7 through 0.9.x before 0.9.2 allows local us
 	NOTE: https://github.com/opensvc/multipath-tools/commit/2a1ff3154c1d5de423c303ca3bc9ed9727b4e523 (0.9.2)
 	NOTE: https://github.com/opensvc/multipath-tools/commit/cb57b930fa690ab79b3904846634681685e3470f (0.9.2, CVE fix)
 	NOTE: https://github.com/opensvc/multipath-tools/commit/994811a29332161ec150f1d9822ff460cfc0f316 (0.9.2)
+	NOTE: The fix for CVE-2022-41973 switches to use /run instead of /dev/shm  which is a backward
+	NOTE: incompatible change (which can be overriden but leaving CVE open).
 CVE-2022-41972
 	RESERVED
 CVE-2022-41971



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/223e6a176cc978aeb3a3e903e91221040286ff12

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/223e6a176cc978aeb3a3e903e91221040286ff12
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221030/e651f22f/attachment.htm>
