[Git][security-tracker-team/security-tracker][master] openldap n/a

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
48bc6af2 by Moritz Muehlenhoff at 2023-03-13T14:37:00+01:00
openldap n/a

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -46461,7 +46461,6 @@ CVE-2022-3065 (Improper Access Control in GitHub repository jgraph/drawio prior
 CVE-2022-3064 (Parsing malicious or large YAML documents can consume excessive amount ...)
 	- golang-yaml.v2 2.2.8-1
 	NOTE: https://github.com/go-yaml/yaml/commit/f221b8435cfb71e54062f6c6e99e9ade30b124d5 (v2.2.4)
-	TODO: check if affect other versions of "go-yaml"
 CVE-2022-3063
 	REJECTED
 CVE-2022-3062 (The Simple File List WordPress plugin before 4.4.12 does not escape pa ...)
@@ -68160,7 +68159,7 @@ CVE-2022-31255 (An Improper Limitation of a Pathname to a Restricted Directory (
 CVE-2022-31254 (A Incorrect Default Permissions vulnerability in rmt-server-regsharing ...)
 	NOT-FOR-US: SAP
 CVE-2022-31253 (A Untrusted Search Path vulnerability in openldap2 of openSUSE Factory ...)
-	TODO: check
+	- openldap <not-affected> (SuSE-specific packaging issue)
 CVE-2022-31252 (A Incorrect Authorization vulnerability in chkstat of SUSE Linux Enter ...)
 	NOT-FOR-US: OpenSUSE
 CVE-2022-31251 (A Incorrect Default Permissions vulnerability in the packaging of the  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/48bc6af2dc93ef4f4d1c3d23d95333252f5d4127

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/48bc6af2dc93ef4f4d1c3d23d95333252f5d4127
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230313/bf200cd9/attachment.htm>