[Git][security-tracker-team/security-tracker][master] Add CVE-2022-29503/uclibc
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Sep 29 22:04:57 BST 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
1222485d by Salvatore Bonaccorso at 2022-09-29T22:57:44+02:00
Add CVE-2022-29503/uclibc
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -33020,7 +33020,9 @@ CVE-2022-1406 (Improper input validation in GitLab CE/EE affecting all versions
CVE-2022-29504
REJECTED
CVE-2022-29503 (A memory corruption vulnerability exists in the libpthread linuxthread ...)
- TODO: check
+ - uclibc <unfixed> (unimportant)
+ NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2022-1517
+ NOTE: Just for cross-compiling, not used for actual packages
CVE-2022-1405 (CNCSoft: All versions prior to 1.01.32 does not properly sanitize inpu ...)
NOT-FOR-US: CNCSoft
CVE-2022-1404 (Delta Electronics CNCSoft (All versions prior to 1.01.32) does not pro ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1222485da215dfe0af61caba620120522802099f
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1222485da215dfe0af61caba620120522802099f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220929/221500ec/attachment.htm>
More information about the debian-security-tracker-commits
mailing list