[Git][security-tracker-team/security-tracker][master] Update information for CVE-2022-25147 and CVE-2022-24963

Wed Feb 1 08:39:56 GMT 2023


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
503fcb1e by Salvatore Bonaccorso at 2023-02-01T09:36:56+01:00
Update information for CVE-2022-25147 and CVE-2022-24963

Thanks: Stefan Fritsch

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -76715,8 +76715,9 @@ CVE-2022-0611 (Improper Privilege Management in Packagist snipe/snipe-it prior t
 CVE-2019-25057 (In Corda before 4.1, the meaning of serialized data can be modified vi ...)
 	NOT-FOR-US: Corda
 CVE-2022-25147 (Integer Overflow or Wraparound vulnerability in apr_base64 functions o ...)
-	- apr <unfixed>
+	- apr-util <unfixed>
 	NOTE: https://lists.apache.org/thread/np5gjqlohc4f62lr09vrn61vl44cylh8
+	NOTE: http://svn.apache.org/r1904728
 CVE-2022-0610 (Inappropriate implementation in Gamepad API in Google Chrome prior to  ...)
 	{DSA-5079-1}
 	- chromium 98.0.4758.102-1
@@ -77294,6 +77295,7 @@ CVE-2022-24964
 CVE-2022-24963 (Integer Overflow or Wraparound vulnerability in apr_encode functions o ...)
 	- apr <unfixed>
 	NOTE: https://lists.apache.org/thread/fw9p6sdncwsjkstwc066vz57xqzfksq9
+	NOTE: http://svn.apache.org/r1904675
 CVE-2022-24962
 	RESERVED
 CVE-2022-0568



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/503fcb1e1297e1d7b4046f5be4b794bb60f24eed

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/503fcb1e1297e1d7b4046f5be4b794bb60f24eed
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230201/be27e24c/attachment.htm>
