[Git][security-tracker-team/security-tracker][master] Add CVE-2022-38128/binutils

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Sep 2 13:25:26 BST 2022



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
bfec0936 by Salvatore Bonaccorso at 2022-09-02T14:24:55+02:00
Add CVE-2022-38128/binutils

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3158,7 +3158,10 @@ CVE-2022-38130 (The com.keysight.tentacle.config.ResourceManager.smsRestoreDatab
 CVE-2022-38129 (A path traversal vulnerability exists in the com.keysight.tentacle.lic ...)
 	NOT-FOR-US: Keysight Sensor Management Server
 CVE-2022-38128 (An infinite loop may be triggered in display_debug_abbrev() function i ...)
-	TODO: check
+	- binutils <unfixed> (unimportant)
+	NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=29370
+	NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=695c6dfe7e85006b98c8b746f3fd5f913c94ebff
+	NOTE: binutils not covered by security support
 CVE-2022-38127 (A NULL pointer dereference in the read_and_display_attr_value() functi ...)
 	TODO: check
 CVE-2022-38126 (Assertion fail in the display_debug_names() function in binutils/dwarf ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bfec0936587c8625412a2a6c468953fd5b83a1b7

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bfec0936587c8625412a2a6c468953fd5b83a1b7
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220902/36f6bbbe/attachment-0001.htm>


More information about the debian-security-tracker-commits mailing list