[Git][security-tracker-team/security-tracker][master] Add patch links for pdns-recursor
Daniel Leidert (@dleidert)
dleidert at debian.org
Sat Mar 9 02:08:16 GMT 2024
Daniel Leidert pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ca2afd5e by Daniel Leidert at 2024-03-09T03:07:36+01:00
Add patch links for pdns-recursor
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -113238,6 +113238,7 @@ CVE-2022-37428 (PowerDNS Recursor up to and including 4.5.9, 4.6.2 and 4.7.1, wh
[buster] - pdns-recursor <no-dsa> (Minor issue)
NOTE: https://www.openwall.com/lists/oss-security/2022/08/23/1
NOTE: https://downloads.powerdns.com/patches/2022-02/
+ NOTE: https://github.com/PowerDNS/pdns/commit/21f3d92144bc6a65483a363f6be7237d714c1936 (rec-4.5.10)
CVE-2022-37427
RESERVED
CVE-2022-37426 (Unrestricted Upload of File with Dangerous Type vulnerability in OpenN ...)
@@ -142446,11 +142447,13 @@ CVE-2022-27227 (In PowerDNS Authoritative Server before 4.4.3, 4.5.x before 4.5.
[bullseye] - pdns-recursor <no-dsa> (Minor issue)
[buster] - pdns-recursor <no-dsa> (Minor issue)
[stretch] - pdns-recursor <no-dsa> (Minor issue)
+ NOTE: https://github.com/PowerDNS/pdns/commit/ff27c8c8e17bd8093e4668d88865b8eb71039b45 (rec-4.4.8)
- pdns 4.6.1-1
[bullseye] - pdns <no-dsa> (Minor issue)
[buster] - pdns <no-dsa> (Minor issue)
[stretch] - pdns <no-dsa> (Minor issue)
NOTE: https://www.openwall.com/lists/oss-security/2022/03/25/1
+ NOTE: https://github.com/PowerDNS/pdns/commit/57312d230d5c01d9aca58cb29ce87e23ccbbefd2 (auth-4.4.3)
CVE-2022-27226 (A CSRF issue in /api/crontab on iRZ Mobile Routers through 2022-03-16 ...)
NOT-FOR-US: iRZ Mobile Routers
CVE-2022-0999 (An authenticated user may be able to misuse parameters to inject arbit ...)
@@ -248545,6 +248548,7 @@ CVE-2020-25829 (An issue has been found in PowerDNS Recursor before 4.1.18, 4.2.
- pdns-recursor 4.3.5-1 (bug #972159)
[buster] - pdns-recursor <no-dsa> (Minor issue)
NOTE: https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2020-07.html
+ NOTE: https://github.com/PowerDNS/pdns/commit/77409aab0be43071b365760213894d6388c3df30 (rec-4.1.18)
CVE-2020-25828 (An issue was discovered in MediaWiki before 1.31.10 and 1.32.x through ...)
{DSA-4767-1 DLA-2379-1}
- mediawiki 1:1.35.0-1
@@ -275589,6 +275593,7 @@ CVE-2020-14196 (In PowerDNS Recursor versions up to and including 4.3.1, 4.2.2 a
- pdns-recursor 4.3.2-1 (low; bug #964103)
[buster] - pdns-recursor <postponed> (Minor issue, fix along in next DSA)
NOTE: https://www.openwall.com/lists/oss-security/2020/07/01/1
+ NOTE: https://github.com/PowerDNS/pdns/pull/9283/commits/e81271189216dbf2850c6d4461dfc3f37c731ac8 (rec-4.1.17)
CVE-2020-14195 (FasterXML jackson-databind 2.x before 2.9.10.5 mishandles the interact ...)
{DLA-2270-1}
- jackson-databind 2.11.1-1
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ca2afd5e4c306d14b0ae27c16b3d0396ce5b5aa9
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ca2afd5e4c306d14b0ae27c16b3d0396ce5b5aa9
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240309/520e4daf/attachment.htm>
More information about the debian-security-tracker-commits
mailing list