[Git][security-tracker-team/security-tracker][master] Update information for CVE-2022-3116/heimdal

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Apr 17 14:22:06 BST 2023



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
99013142 by Salvatore Bonaccorso at 2023-04-17T14:56:32+02:00
Update information for CVE-2022-3116/heimdal

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -52927,9 +52927,11 @@ CVE-2022-39799 (An attacker with no prior authentication could craft and send ma
 CVE-2022-3117
 	REJECTED
 CVE-2022-3116 (The Heimdal Software Kerberos 5 implementation is vulnerable to a null ...)
-	- heimdal <unfixed> (bug #1033755)
+	- heimdal <not-affected> (Vulnerable code introduced in master branch only)
 	NOTE: https://www.kb.cert.org/vuls/id/730793
-	NOTE: https://github.com/heimdal/heimdal/commit/7a19658c1f4fc4adf85bb7bea96caae5ba57b33e
+	NOTE: Introduced by: https://github.com/heimdal/heimdal/commit/4fb6a6adc9d5593079e37addb40fd80834df77b4
+	NOTE: Fixed by: https://github.com/heimdal/heimdal/commit/7a19658c1f4fc4adf85bb7bea96caae5ba57b33e
+	NOTE: Different issue from CVE-2021-44758
 CVE-2022-3115 (An issue was discovered in the Linux kernel through 5.16-rc6. malidp_c ...)
 	- linux 5.18.5-1
 	[bullseye] - linux 5.10.127-1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/99013142d2f81b3c821be4c6683e7157615977e2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/99013142d2f81b3c821be4c6683e7157615977e2
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230417/73b2f3fb/attachment.htm>


More information about the debian-security-tracker-commits mailing list