[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Sep 25 21:10:34 BST 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a719ee83 by security tracker role at 2022-09-25T20:10:23+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,7 @@
+CVE-2022-41343 (registerFont in FontMetrics.php in Dompdf before 2.0.1 allows remote f ...)
+ TODO: check
+CVE-2022-36368
+ RESERVED
CVE-2022-41340 (The secp256k1-js package before 1.1.0 for Node.js implements ECDSA wit ...)
TODO: check
CVE-2022-41339
@@ -6,10 +10,9 @@ CVE-2022-41338
RESERVED
CVE-2022-41337
RESERVED
-CVE-2022-3297
- RESERVED
-CVE-2022-3296
- RESERVED
+CVE-2022-3297 (Use After Free in GitHub repository vim/vim prior to 9.0.0579. ...)
+ TODO: check
+CVE-2022-3296 (Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0. ...)
- vim <unfixed>
NOTE: https://huntr.dev/bounties/958866b8-526a-4979-9471-39392e0c9077
NOTE: https://github.com/vim/vim/commit/96b9bf8f74af8abf1e30054f996708db7dc285be (v9.0.0577)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a719ee832d4c8dd14e466384493f911133e26b11
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a719ee832d4c8dd14e466384493f911133e26b11
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220925/0652939a/attachment.htm>
More information about the debian-security-tracker-commits
mailing list