[Git][security-tracker-team/security-tracker][master] Track fix for CVE-2022-1941/protobuf via experimental
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Sep 28 05:42:09 BST 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
48e0a94b by Salvatore Bonaccorso at 2022-09-28T06:41:20+02:00
Track fix for CVE-2022-1941/protobuf via experimental
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -25295,6 +25295,7 @@ CVE-2022-1942 (Heap-based Buffer Overflow in GitHub repository vim/vim prior to
NOTE: https://huntr.dev/bounties/67ca4d3b-9175-43c1-925c-72a7091bc071
NOTE: https://github.com/vim/vim/commit/71223e2db87c2bf3b09aecb46266b56cda26191d (v8.2.5043)
CVE-2022-1941 (A parsing vulnerability for the MessageSet type in the ProtocolBuffers ...)
+ [experimental] - protobuf 3.20.2-1
- protobuf <unfixed>
NOTE: https://www.openwall.com/lists/oss-security/2022/09/27/1
NOTE: https://github.com/protocolbuffers/protobuf/security/advisories/GHSA-8gq9-2x98-w8hf
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/48e0a94b4005130ce974180542766b8c82ff24f1
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/48e0a94b4005130ce974180542766b8c82ff24f1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220928/7d215383/attachment.htm>
More information about the debian-security-tracker-commits
mailing list