[Git][security-tracker-team/security-tracker][master] pcre2 non issue
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Wed Jul 19 20:34:16 BST 2023
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
8fbf6126 by Moritz Muehlenhoff at 2023-07-19T21:33:36+02:00
pcre2 non issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -60083,7 +60083,10 @@ CVE-2022-41411
CVE-2022-41410
RESERVED
CVE-2022-41409 (Integer overflow vulnerability in pcre2test before 10.41 allows attack ...)
- TODO: check
+ - pcre2 10.42-1 (unimportant)
+ NOTE: https://github.com/PCRE2Project/pcre2/issues/141
+ NOTE: https://github.com/PCRE2Project/pcre2/commit/94e1c001761373b7d9450768aa15d04c25547a35
+ NOTE: Infinite loop in CLI tool, no security impact
CVE-2022-41408 (Online Pet Shop We App v1.0 was discovered to contain a SQL injection ...)
NOT-FOR-US: Online Pet Shop
CVE-2022-41407 (Online Pet Shop We App v1.0 was discovered to contain a SQL injection ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8fbf612638a9ec29e681291f5f0bac5a9033c04a
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8fbf612638a9ec29e681291f5f0bac5a9033c04a
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230719/d3355a4f/attachment.htm>
More information about the debian-security-tracker-commits
mailing list