[Git][security-tracker-team/security-tracker][master] Add a note on relation between CVE-2022-3277 and CVE-2023-3637
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Jan 20 15:25:28 GMT 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
01ef1380 by Salvatore Bonaccorso at 2024-01-20T16:24:50+01:00
Add a note on relation between CVE-2022-3277 and CVE-2023-3637
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -91554,6 +91554,7 @@ CVE-2022-3277 (An uncontrolled resource consumption flaw was found in openstack-
[bullseye] - neutron <no-dsa> (Minor issue)
[buster] - neutron <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2129193
+ NOTE: When fixing this issue this might open CVE-2023-3637 if fixed incompletely.
CVE-2020-36604 (hoek before 8.5.1 and 9.x before 9.0.3 allows prototype poisoning in t ...)
- node-hoek 9.0.3+~5.0.0+~4.0.0-1
[buster] - node-hoek <not-affected> (Vulnerable code not present)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/01ef138081043cdc8c28d7ee6cbb31154d76aa4b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/01ef138081043cdc8c28d7ee6cbb31154d76aa4b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240120/152c3951/attachment.htm>
More information about the debian-security-tracker-commits
mailing list