Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
2c3c8569 by Salvatore Bonaccorso at 2022-02-24T09:37:11+01:00
Add CVE-2022-256{39,40}/wolfssl
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -455,11 +455,17 @@ CVE-2022-25642
CVE-2022-25641
RESERVED
CVE-2022-25640 (In wolfSSL before 5.2.0, a TLS 1.3 server cannot properly
enforce a re ...)
- TODO: check
+ - wolfssl 5.2.0-1
+ NOTE: https://github.com/wolfSSL/wolfssl/pull/4831
+ NOTE:
https://github.com/wolfSSL/wolfssl/commit/3cdb1c639da94a9dc8c75590d0ec475e7f27c226
(v5.2.0-stable)
+ NOTE:
https://github.com/wolfSSL/wolfssl/commit/b60d2dccce9110fd2b985d99063e524e39bdf6f7
(v5.2.0-stable)
CVE-2022-25639
RESERVED
CVE-2022-25638 (In wolfSSL before 5.2.0, certificate validation may be
bypassed during ...)
- TODO: check
+ - wolfssl 5.2.0-1
+ NOTE: https://github.com/wolfSSL/wolfssl/pull/4813
+ NOTE:
https://github.com/wolfSSL/wolfssl/commit/e13861bcde8015bb99ddb034224afb66e2fb89b8
(v5.2.0-stable)
+ NOTE:
https://github.com/wolfSSL/wolfssl/commit/08047b2d959ee5e21a4a2c672308f45fec61f059
(v5.2.0-stable)
CVE-2022-25637
RESERVED
CVE-2022-25635
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2c3c8569138e9b46d4a685714065fea3e45eb0f3
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2c3c8569138e9b46d4a685714065fea3e45eb0f3
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
