Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
48bc6af2 by Moritz Muehlenhoff at 2023-03-13T14:37:00+01:00
openldap n/a
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -46461,7 +46461,6 @@ CVE-2022-3065 (Improper Access Control in GitHub
repository jgraph/drawio prior
CVE-2022-3064 (Parsing malicious or large YAML documents can consume excessive
amount ...)
- golang-yaml.v2 2.2.8-1
NOTE:
https://github.com/go-yaml/yaml/commit/f221b8435cfb71e54062f6c6e99e9ade30b124d5
(v2.2.4)
- TODO: check if affect other versions of "go-yaml"
CVE-2022-3063
REJECTED
CVE-2022-3062 (The Simple File List WordPress plugin before 4.4.12 does not
escape pa ...)
@@ -68160,7 +68159,7 @@ CVE-2022-31255 (An Improper Limitation of a Pathname to
a Restricted Directory (
CVE-2022-31254 (A Incorrect Default Permissions vulnerability in
rmt-server-regsharing ...)
NOT-FOR-US: SAP
CVE-2022-31253 (A Untrusted Search Path vulnerability in openldap2 of openSUSE
Factory ...)
- TODO: check
+ - openldap <not-affected> (SuSE-specific packaging issue)
CVE-2022-31252 (A Incorrect Authorization vulnerability in chkstat of SUSE
Linux Enter ...)
NOT-FOR-US: OpenSUSE
CVE-2022-31251 (A Incorrect Default Permissions vulnerability in the packaging
of the ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/48bc6af2dc93ef4f4d1c3d23d95333252f5d4127
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/48bc6af2dc93ef4f4d1c3d23d95333252f5d4127
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
