[Git][security-tracker-team/security-tracker][master] Add references for CVE-2022-43548
Guilhem Moulin (@guilhem)
guilhem at debian.org
Thu Feb 23 19:31:56 GMT 2023
Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker
Commits:
6325f68d by Guilhem Moulin at 2023-02-23T20:30:28+01:00
Add references for CVE-2022-43548
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -29738,6 +29738,8 @@ CVE-2022-43548 (A OS Command Injection vulnerability exists in Node.js versions
{DSA-5326-1}
- nodejs 18.12.1+dfsg-1 (bug #1023518)
NOTE: https://nodejs.org/en/blog/vulnerability/november-2022-security-releases/#dns-rebinding-in-inspect-via-invalid-octal-ip-address-medium-cve-2022-43548
+ NOTE: https://hackerone.com/reports/1710652
+ NOTE: Fixed by: https://github.com/nodejs/node/commit/2b433af094fb79cf80f086038b7f36342cb6826f (v14.x)
CVE-2022-43547
RESERVED
CVE-2022-43546 (A vulnerability has been identified in POWER METER SICAM Q100 (All ver ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6325f68d72fb62f5c45a7d8277e7e644569ca3bd
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6325f68d72fb62f5c45a7d8277e7e644569ca3bd
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230223/f7f2ecef/attachment.htm>
More information about the debian-security-tracker-commits
mailing list