[Git][security-tracker-team/security-tracker][master] Reference upstream commit tags for easier further tracking

Wed May 10 20:38:32 BST 2023


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5ab6579f by Salvatore Bonaccorso at 2023-05-10T21:37:55+02:00
Reference upstream commit tags for easier further tracking

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -44954,9 +44954,9 @@ CVE-2022-43681 (An out-of-bounds read exists in the BGP daemon of FRRouting FRR
 	NOTE: https://github.com/FRRouting/frr/issues/13427
 	NOTE: https://github.com/FRRouting/frr/issues/13480
 	NOTE: Fixes for CVE-2022-43681/CVE-2022-40318/CVE-2022-40302:
-	NOTE: https://github.com/FRRouting/frr/commit/1117baca3c592877a4d8a13ed6a1d9bd83977487
-	NOTE: https://github.com/FRRouting/frr/commit/3e46b43e3788f0f87bae56a86b54d412b4710286
-	NOTE: https://github.com/FRRouting/frr/commit/766eec1b7accffe2c04a5c9ebb14e9f487bb9f78
+	NOTE: https://github.com/FRRouting/frr/commit/1117baca3c592877a4d8a13ed6a1d9bd83977487 (base_8.4)
+	NOTE: https://github.com/FRRouting/frr/commit/3e46b43e3788f0f87bae56a86b54d412b4710286 (base_8.4)
+	NOTE: https://github.com/FRRouting/frr/commit/766eec1b7accffe2c04a5c9ebb14e9f487bb9f78 (base_8.5)
 CVE-2022-43680 (In libexpat through 2.4.9, there is a use-after free caused by overeag ...)
 	{DSA-5266-1 DLA-3165-1}
 	- expat 2.5.0-1 (bug #1022743)
@@ -54204,9 +54204,9 @@ CVE-2022-40318 (An issue was discovered in bgpd in FRRouting (FRR) through 8.4.
 	NOTE: https://github.com/FRRouting/frr/issues/13427
 	NOTE: https://github.com/FRRouting/frr/issues/13480
 	NOTE: Fixes for CVE-2022-43681/CVE-2022-40318/CVE-2022-40302:
-	NOTE: https://github.com/FRRouting/frr/commit/1117baca3c592877a4d8a13ed6a1d9bd83977487
-	NOTE: https://github.com/FRRouting/frr/commit/3e46b43e3788f0f87bae56a86b54d412b4710286
-	NOTE: https://github.com/FRRouting/frr/commit/766eec1b7accffe2c04a5c9ebb14e9f487bb9f78
+	NOTE: https://github.com/FRRouting/frr/commit/1117baca3c592877a4d8a13ed6a1d9bd83977487 (base_8.4)
+	NOTE: https://github.com/FRRouting/frr/commit/3e46b43e3788f0f87bae56a86b54d412b4710286 (base_8.4)
+	NOTE: https://github.com/FRRouting/frr/commit/766eec1b7accffe2c04a5c9ebb14e9f487bb9f78 (base_8.5)
 CVE-2022-40317 (OpenKM 6.3.11 allows stored XSS related to the javascript: subst ...)
 	NOT-FOR-US: OpenKM
 CVE-2022-40316 (The H5P activity attempts report did not filter by groups, which in se ...)
@@ -54273,9 +54273,9 @@ CVE-2022-40302 (An issue was discovered in bgpd in FRRouting (FRR) through 8.4.
 	NOTE: https://github.com/FRRouting/frr/issues/13427
 	NOTE: https://github.com/FRRouting/frr/issues/13480
 	NOTE: Fixes for CVE-2022-43681/CVE-2022-40318/CVE-2022-40302:
-	NOTE: https://github.com/FRRouting/frr/commit/1117baca3c592877a4d8a13ed6a1d9bd83977487
-	NOTE: https://github.com/FRRouting/frr/commit/3e46b43e3788f0f87bae56a86b54d412b4710286
-	NOTE: https://github.com/FRRouting/frr/commit/766eec1b7accffe2c04a5c9ebb14e9f487bb9f78
+	NOTE: https://github.com/FRRouting/frr/commit/1117baca3c592877a4d8a13ed6a1d9bd83977487 (base_8.4)
+	NOTE: https://github.com/FRRouting/frr/commit/3e46b43e3788f0f87bae56a86b54d412b4710286 (base_8.4)
+	NOTE: https://github.com/FRRouting/frr/commit/766eec1b7accffe2c04a5c9ebb14e9f487bb9f78 (base_8.5)
 CVE-2022-40301
 	RESERVED
 CVE-2022-40300 (Zoho ManageEngine Password Manager Pro through 12120 before 12121, PAM ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5ab6579fc1e197d8c6b62464e730899a71d3fd78

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5ab6579fc1e197d8c6b62464e730899a71d3fd78
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230510/848e9995/attachment.htm>
