Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: adc1880f by Salvatore Bonaccorso at 2022-04-27T10:23:35+02:00 Add Debian bug referneces for curl issues - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -5719,12 +5719,12 @@ CVE-2022-27777 RESERVED CVE-2022-27776 [Auth/cookie leak on redirect] RESERVED - - curl <unfixed> + - curl <unfixed> (bug #1010252) NOTE: https://curl.se/docs/CVE-2022-27776.html NOTE: Fixed by: https://github.com/curl/curl/commit/6e659993952aa5f90f48864be84a1bbb047fc258 (curl-7_83_0) CVE-2022-27775 [Bad local IPv6 connection reuse] RESERVED - - curl <unfixed> + - curl <unfixed> (bug #1010253) [buster] - curl <not-affected> (Vulnerable code introduced later) [stretch] - curl <not-affected> (Vulnerable code introduced later) NOTE: https://curl.se/docs/CVE-2022-27775.html @@ -5732,7 +5732,7 @@ CVE-2022-27775 [Bad local IPv6 connection reuse] NOTE: Fixed by: https://github.com/curl/curl/commit/058f98dc3fe595f21dc26a5b9b1699e519ba5705 (curl-7_83_0) CVE-2022-27774 [Credential leak on redirect] RESERVED - - curl <unfixed> + - curl <unfixed> (bug #1010254) NOTE: https://curl.se/docs/CVE-2022-27774.html NOTE: Fixed by: https://github.com/curl/curl/commit/620ea21410030a9977396b4661806bc187231b79 (curl-7_83_0) NOTE: Followup: https://github.com/curl/curl/commit/139a54ed0a172adaaf1a78d6f4fff50b2c3f9e08 (curl-7_83_0) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/adc1880fba09fcc428cfc34707e7f2b354c06588 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/adc1880fba09fcc428cfc34707e7f2b354c06588 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits