[Git][security-tracker-team/security-tracker][master] Add CVE-2022-48174/busybox

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Aug 23 20:19:50 BST 2023



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d1e92836 by Salvatore Bonaccorso at 2023-08-23T21:18:34+02:00
Add CVE-2022-48174/busybox

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -40642,7 +40642,9 @@ CVE-2022-48176 (Netgear routers R7000P before v1.3.3.154, R6900P before v1.3.3.1
 CVE-2022-48175 (Rukovoditel v3.2.1 was discovered to contain a remote code execution ( ...)
 	NOT-FOR-US: Rukovoditel
 CVE-2022-48174 (There is a stack overflow vulnerability in ash.c:6030 in busybox befor ...)
-	TODO: check
+	- busybox <unfixed>
+	NOTE: https://bugs.busybox.net/show_bug.cgi?id=15216
+	NOTE: https://git.busybox.net/busybox/commit/?id=d417193cf37ca1005830d7e16f5fa7e1d8a44209
 CVE-2022-48173
 	RESERVED
 CVE-2022-48172



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d1e92836185bfce5a94eaa0dfa82453eddc371ae

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d1e92836185bfce5a94eaa0dfa82453eddc371ae
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230823/debaaaa7/attachment-0001.htm>


More information about the debian-security-tracker-commits mailing list