Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
33ddb128 by Moritz Mühlenhoff at 2022-12-29T00:08:42+01:00
bugnums
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -17953,15 +17953,15 @@ CVE-2022-43253 (Libde265 v1.0.8 was discovered to
contain a heap-buffer-overflow
- libde265 <unfixed> (bug #1025816)
NOTE: https://github.com/strukturag/libde265/issues/348
CVE-2022-43252 (Libde265 v1.0.8 was discovered to contain a
heap-buffer-overflow vulne ...)
- - libde265 <unfixed>
+ - libde265 <unfixed> (bug #1027179)
NOTE: https://github.com/strukturag/libde265/issues/347
CVE-2022-43251
RESERVED
CVE-2022-43250 (Libde265 v1.0.8 was discovered to contain a
heap-buffer-overflow vulne ...)
- - libde265 <unfixed>
+ - libde265 <unfixed> (bug #1027179)
NOTE: https://github.com/strukturag/libde265/issues/346
CVE-2022-43249 (Libde265 v1.0.8 was discovered to contain a
heap-buffer-overflow vulne ...)
- - libde265 <unfixed>
+ - libde265 <unfixed> (bug #1027179)
NOTE: https://github.com/strukturag/libde265/issues/345
CVE-2022-43248 (Libde265 v1.0.8 was discovered to contain a
heap-buffer-overflow vulne ...)
- libde265 <unfixed> (bug #1025816)
@@ -17971,37 +17971,37 @@ CVE-2022-43247
CVE-2022-43246
RESERVED
CVE-2022-43245 (Libde265 v1.0.8 was discovered to contain a segmentation
violation via ...)
- - libde265 <unfixed>
+ - libde265 <unfixed> (bug #1027179)
NOTE: https://github.com/strukturag/libde265/issues/352
CVE-2022-43244 (Libde265 v1.0.8 was discovered to contain a
heap-buffer-overflow vulne ...)
- - libde265 <unfixed>
+ - libde265 <unfixed> (bug #1027179)
NOTE: https://github.com/strukturag/libde265/issues/342
CVE-2022-43243 (Libde265 v1.0.8 was discovered to contain a
heap-buffer-overflow vulne ...)
- libde265 <unfixed> (bug #1025816)
NOTE: https://github.com/strukturag/libde265/issues/339
CVE-2022-43242 (Libde265 v1.0.8 was discovered to contain a
heap-buffer-overflow vulne ...)
- - libde265 <unfixed>
+ - libde265 <unfixed> (bug #1027179)
NOTE: https://github.com/strukturag/libde265/issues/340
CVE-2022-43241 (Libde265 v1.0.8 was discovered to contain an unknown crash via
ff_hevc ...)
- - libde265 <unfixed>
+ - libde265 <unfixed> (bug #1027179)
NOTE: https://github.com/strukturag/libde265/issues/338
CVE-2022-43240 (Libde265 v1.0.8 was discovered to contain a
heap-buffer-overflow vulne ...)
- - libde265 <unfixed>
+ - libde265 <unfixed> (bug #1027179)
NOTE: https://github.com/strukturag/libde265/issues/335
CVE-2022-43239 (Libde265 v1.0.8 was discovered to contain a
heap-buffer-overflow vulne ...)
- - libde265 <unfixed>
+ - libde265 <unfixed> (bug #1027179)
NOTE: https://github.com/strukturag/libde265/issues/341
CVE-2022-43238 (Libde265 v1.0.8 was discovered to contain an unknown crash via
ff_hevc ...)
- - libde265 <unfixed>
+ - libde265 <unfixed> (bug #1027179)
NOTE: https://github.com/strukturag/libde265/issues/338
CVE-2022-43237 (Libde265 v1.0.8 was discovered to contain a
stack-buffer-overflow vuln ...)
- - libde265 <unfixed>
+ - libde265 <unfixed> (bug #1027179)
NOTE: https://github.com/strukturag/libde265/issues/344
CVE-2022-43236 (Libde265 v1.0.8 was discovered to contain a
stack-buffer-overflow vuln ...)
- - libde265 <unfixed>
+ - libde265 <unfixed> (bug #1027179)
NOTE: https://github.com/strukturag/libde265/issues/343
CVE-2022-43235 (Libde265 v1.0.8 was discovered to contain a
heap-buffer-overflow vulne ...)
- - libde265 <unfixed>
+ - libde265 <unfixed> (bug #1027179)
NOTE: https://github.com/strukturag/libde265/issues/337
CVE-2022-43234 (An arbitrary file upload vulnerability in the /attachments
component o ...)
NOT-FOR-US: Hoosk CMS
@@ -21604,7 +21604,7 @@ CVE-2022-41916 (Heimdal is an implementation of
ASN.1/DER, PKIX, and Kerberos. V
NOTE:
https://github.com/heimdal/heimdal/security/advisories/GHSA-mgqr-gvh6-23cx
NOTE:
https://github.com/heimdal/heimdal/commit/eb87af0c2d189c25294c7daf483a47b03af80c2c
(heimdal-7.7.1)
CVE-2022-41915 (Netty project is an event-driven asynchronous network
application fram ...)
- - netty <unfixed>
+ - netty <unfixed> (bug #1027180)
NOTE:
https://github.com/netty/netty/security/advisories/GHSA-hh82-3pmq-7frp
CVE-2022-41914 (Zulip is an open-source team collaboration tool. For
organizations wit ...)
NOT-FOR-US: Zulip
@@ -21680,7 +21680,7 @@ CVE-2022-41882 (The Nextcloud Desktop Client is a tool
to synchronize files from
NOTE: https://github.com/nextcloud/server/pull/34559
TODO: check details, is owncloud-client similarly affected?
CVE-2022-41881 (Netty project is an event-driven asynchronous network
application fram ...)
- - netty <unfixed>
+ - netty <unfixed> (bug #1027180)
NOTE:
https://github.com/netty/netty/security/advisories/GHSA-fx2c-96vj-985v
CVE-2022-41880 (TensorFlow is an open source platform for machine learning.
When the ` ...)
- tensorflow <itp> (bug #804612)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/33ddb128267af56e387c70cdd666988a88f916fb
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/33ddb128267af56e387c70cdd666988a88f916fb
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
