[Git][security-tracker-team/security-tracker][master] Add CVE-2022-4064/ruby-dalli

Sat, 19 Nov 2022 12:22:43 -0800 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
866bbf8b by Salvatore Bonaccorso at 2022-11-19T21:22:07+01:00
Add CVE-2022-4064/ruby-dalli

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3,7 +3,11 @@ CVE-2022-4066
 CVE-2022-4065
        RESERVED
 CVE-2022-4064 (A vulnerability was found in Dalli. It has been classified as 
problema ...)
-       TODO: check
+       - ruby-dalli <not-affected> (Vulnerable code introduced later)
+       NOTE: https://github.com/petergoldstein/dalli/issues/932
+       NOTE: https://github.com/petergoldstein/dalli/pull/933
+       NOTE: Introduced after: 
https://github.com/petergoldstein/dalli/commit/5588d98f79eb04a9abcaeeff3263e08f93468b30
 (v3.2.0)
+       NOTE: Fixed by: 
https://github.com/petergoldstein/dalli/commit/48d594dae55934476fec61789e7a7c3700e0f50d
 (v3.2.3)
 CVE-2022-45483
        RESERVED
 CVE-2022-45482



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/866bbf8b2aeaa48e800f71285fb1a50d8484947b

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/866bbf8b2aeaa48e800f71285fb1a50d8484947b
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to