[Git][security-tracker-team/security-tracker][master] Add CVE-2022-25304/python-opcua
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Sep 5 20:37:08 BST 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
cf503442 by Salvatore Bonaccorso at 2022-09-05T21:36:31+02:00
Add CVE-2022-25304/python-opcua
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -38306,7 +38306,9 @@ CVE-2022-25345 (All versions of package @discordjs/opus are vulnerable to Denial
CVE-2022-25324 (All versions of package bignum are vulnerable to Denial of Service (Do ...)
NOT-FOR-US: justmoon/node-bignum
CVE-2022-25304 (All versions of package opcua; all versions of package asyncua are vul ...)
- TODO: check
+ - python-opcua <unfixed>
+ NOTE: https://github.com/FreeOpcUa/python-opcua/issues/1466
+ NOTE: https://security.snyk.io/vuln/SNYK-PYTHON-OPCUA-2988730
CVE-2022-25303 (The package whoogle-search before 0.7.2 are vulnerable to Cross-site S ...)
NOT-FOR-US: whoogle-search
CVE-2022-25302 (All versions of package asneg/opcuastack are vulnerable to Denial of S ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cf5034420d0dcc28a9b1fc0e3ba99e1bd25d2309
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cf5034420d0dcc28a9b1fc0e3ba99e1bd25d2309
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220905/90138fb4/attachment.htm>
More information about the debian-security-tracker-commits
mailing list