[Git][security-tracker-team/security-tracker][master] Add CVE-2022-48468/protobuf-c
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Apr 14 21:51:36 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ae11ac07 by Salvatore Bonaccorso at 2023-04-14T22:50:50+02:00
Add CVE-2022-48468/protobuf-c
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -536,7 +536,12 @@ CVE-2023-2013
CVE-2023-2012
RESERVED
CVE-2022-48468 (protobuf-c before 1.4.1 has an unsigned integer overflow in parse_requ ...)
- TODO: check
+ - protobuf-c 1.4.1-1
+ [bullseye] - protobuf-c <no-dsa> (Minor issue)
+ NOTE: https://github.com/protobuf-c/protobuf-c/commit/289f5c18b195aa43d46a619d1188709abbfa9c82 (v1.4.1)
+ NOTE: https://github.com/protobuf-c/protobuf-c/commit/0d1fd124a4e0a07b524989f6e64410ff648fba61 (v1.4.1)
+ NOTE: https://github.com/protobuf-c/protobuf-c/pull/513
+ NOTE: https://github.com/protobuf-c/protobuf-c/issues/499
CVE-2022-48467
RESERVED
CVE-2022-48466
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ae11ac0722199af4175ef8079624beb34a04c50b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ae11ac0722199af4175ef8079624beb34a04c50b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230414/a2d1a879/attachment.htm>
More information about the debian-security-tracker-commits
mailing list