CVE Status: Difference between revisions

From Yocto Project
Jump to navigationJump to search
(Created page with "This is a list of CVEs which are currently being reported as open, and the current state. === [https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-3219 CVE-2022-3219] (...")
 
mNo edit summary
Line 5: Line 5:
Hypothetical DoS. A patch [https://dev.gnupg.org/D556 was proposed] but hasn't been reviewed or merged.
Hypothetical DoS. A patch [https://dev.gnupg.org/D556 was proposed] but hasn't been reviewed or merged.


=== [https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-33065 CVE-2022-33065] (libsndfile1)
=== [https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-33065 CVE-2022-33065] (libsndfile1) ===


Integer overflow, [https://github.com/libsndfile/libsndfile/issues/789 still open upstream].
Integer overflow, [https://github.com/libsndfile/libsndfile/issues/789 still open upstream].


=== [https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-46456 CVE-2022-46456] (nasm)
=== [https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-46456 CVE-2022-46456] (nasm) ===


Buffer overflow, [https://bugzilla.nasm.us/show_bug.cgi?id=3392814 still open upstream].
Buffer overflow, [https://bugzilla.nasm.us/show_bug.cgi?id=3392814 still open upstream].

Revision as of 21:30, 24 August 2023

This is a list of CVEs which are currently being reported as open, and the current state.

CVE-2022-3219 (gnupg)

Hypothetical DoS. A patch was proposed but hasn't been reviewed or merged.

CVE-2022-33065 (libsndfile1)

Integer overflow, still open upstream.

CVE-2022-46456 (nasm)

Buffer overflow, still open upstream.