Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
2dbbc3e1 by Salvatore Bonaccorso at 2022-05-09T08:49:57+02:00
Track fixed version for two CVEs for mruby via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -4055,7 +4055,7 @@ CVE-2022-1288 (A vulnerability, which was classified as
problematic, has been fo
CVE-2022-1287 (A vulnerability classified as critical was found in School Club
Applic ...)
NOT-FOR-US: School Club Application System
CVE-2022-1286 (heap-buffer-overflow in mrb_vm_exec in mruby/mruby in GitHub
repositor ...)
- - mruby <unfixed>
+ - mruby 3.0.0-4
[bullseye] - mruby <no-dsa> (Minor issue)
[buster] - mruby <no-dsa> (Minor issue)
[stretch] - mruby <not-affected> (Vulnerable code not present)
@@ -5323,7 +5323,7 @@ CVE-2022-1214
CVE-2022-1213 (SSRF filter bypass port 80, 433 in GitHub repository
livehelperchat/li ...)
NOT-FOR-US: livehelperchat
CVE-2022-1212 (Use-After-Free in str_escape in mruby/mruby in GitHub
repository mruby ...)
- - mruby <unfixed> (bug #1009044)
+ - mruby 3.0.0-4 (bug #1009044)
[bullseye] - mruby <no-dsa> (Minor issue)
[buster] - mruby <no-dsa> (Minor issue)
[stretch] - mruby <not-affected> (Vulnerable code not present)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2dbbc3e105d68e9423d2cfd5faee3fa3ec38da94
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2dbbc3e105d68e9423d2cfd5faee3fa3ec38da94
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
