diff options
| author | Sylvain Beucler <beuc@beuc.net> | 2022-05-19 08:30:21 +0200 |
|---|---|---|
| committer | Sylvain Beucler <beuc@beuc.net> | 2022-05-19 08:30:21 +0200 |
| commit | 81941f17c0ca4d7272fb654828bec46d2b998c97 (patch) | |
| tree | f65c859a935f7b5699263d0d5468184caa512294 | |
| parent | 8c75333ab8459da16b458e79da812a69aaf46080 (diff) | |
CVE-2022-24903/rsyslog: documentation relationship with CVE-2018-16881
| -rw-r--r-- | data/CVE/list | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/data/CVE/list b/data/CVE/list index 2c942c6bf9..eabcd42729 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -17689,6 +17689,7 @@ CVE-2022-24903 (Rsyslog is a rocket-fast system for log processing. Modules for NOTE: https://www.openwall.com/lists/oss-security/2022/05/05/3 NOTE: https://github.com/rsyslog/rsyslog/security/advisories/GHSA-ggw7-xr6h-mmr8#advisory-comment-72243 NOTE: https://github.com/rsyslog/rsyslog/commit/89955b0bcb1ff105e1374aad7e0e993faa6a038f (v8.2204.1) + NOTE: Introduced partially by: https://github.com/rsyslog/rsyslog/commit/0381a0de64a5a048c3d48b79055bd9848d0c7fc2 (v8.27.0, CVE-2018-16881) CVE-2022-24902 (TkVideoplayer is a simple library to play video files in tkinter. Unco ...) NOT-FOR-US: TkVideoplayer CVE-2022-24901 (Improper validation of the Apple certificate URL in the Apple Game Cen ...) @@ -244599,6 +244600,7 @@ CVE-2018-16881 (A denial of service vulnerability was found in rsyslog in the im [jessie] - rsyslog <not-affected> (Vulnerable code introduced in 8.13.1) NOTE: Fixed by: https://github.com/rsyslog/rsyslog/commit/0381a0de64a5a048c3d48b79055bd9848d0c7fc2 NOTE: Introduced by: https://github.com/rsyslog/rsyslog/commit/6c52f29d593a27f934a1871d40eed84ebde3f3a6 + NOTE: Fix introduces CVE-2022-24903 CVE-2018-16880 (A flaw was found in the Linux kernel's handle_rx() function in the [vh ...) - linux 4.19.20-1 [stretch] - linux <not-affected> (Vulnerable code introduced in 4.16-rc1) |