[Git][security-tracker-team/security-tracker][master] Add CVE-2022-22995/netatalk

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Oct 6 04:43:32 BST 2023



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
03320fd8 by Salvatore Bonaccorso at 2023-10-06T05:43:01+02:00
Add CVE-2022-22995/netatalk

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -125247,7 +125247,10 @@ CVE-2022-22997 (Addressed a remote code execution vulnerability by resolving a c
 CVE-2022-22996 (The G-RAID 4/8 Software Utility setups for Windows were affected by a  ...)
 	NOT-FOR-US: Western Digital Windows setup
 CVE-2022-22995 (The combination of primitives offered by SMB and AFP in their default  ...)
-	NOT-FOR-US: Western Digital
+	- netatalk <unfixed> (bug #1053545)
+	NOTE: https://netatalk.sourceforge.io/CVE-2022-22995.php
+	NOTE: https://github.com/Netatalk/netatalk/pull/509
+	NOTE: https://github.com/Netatalk/netatalk/commit/9eb6d9d0ac17dca210ccbf05476a925a6b379dfb
 CVE-2022-22994 (A remote code execution vulnerability was discovered on Western Digita ...)
 	NOT-FOR-US: Western Digital
 CVE-2022-22993 (A limited SSRF vulnerability was discovered on Western Digital My Clou ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/03320fd8e6c7818e1301e2162f2a6786b73c2478

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/03320fd8e6c7818e1301e2162f2a6786b73c2478
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231006/9dd55260/attachment.htm>


More information about the debian-security-tracker-commits mailing list