Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f6ecbfc2 by Salvatore Bonaccorso at 2022-06-09T21:57:46+02:00
Update information for CVE-2022-30790/u-boot
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5278,11 +5278,12 @@ CVE-2022-30794 (Online Ordering System v1.0 by
oretnom23 is vulnerable to SQL In
CVE-2022-30793
RESERVED
CVE-2022-30790 (Das U-Boot 2022.01 has a Buffer Overflow, a different issue
than CVE-2 ...)
+ [experimental] - u-boot 2022.07~rc4+dfsg-1
- u-boot <unfixed>
[bullseye] - u-boot <no-dsa> (Minor issue)
[buster] - u-boot <no-dsa> (Minor issue)
NOTE:
https://research.nccgroup.com/2022/06/03/technical-advisory-multiple-vulnerabilities-in-u-boot-cve-2022-30790-cve-2022-30552/
- NOTE:
https://source.denx.de/u-boot/u-boot/-/commit/b85d130ea0cac152c21ec38ac9417b31d41b5552
+ NOTE: Fixed by:
https://source.denx.de/u-boot/u-boot/-/commit/b85d130ea0cac152c21ec38ac9417b31d41b5552
(v2022.07-rc4~4)
CVE-2022-30789 (A crafted NTFS image can cause a heap-based buffer overflow in
ntfs_ch ...)
- ntfs-3g 1:2022.5.17-1 (bug #1011770)
NOTE: https://www.openwall.com/lists/oss-security/2022/05/26/1
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f6ecbfc21dd2dc7a7ca39b0e013b1441f995b472
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f6ecbfc21dd2dc7a7ca39b0e013b1441f995b472
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
