CVE Status: Difference between revisions
From Yocto Project
Jump to navigationJump to search
RossBurton (talk | contribs) mNo edit summary |
RossBurton (talk | contribs) No edit summary |
||
| Line 12: | Line 12: | ||
Buffer overflow, [https://bugzilla.nasm.us/show_bug.cgi?id=3392814 still open upstream]. | Buffer overflow, [https://bugzilla.nasm.us/show_bug.cgi?id=3392814 still open upstream]. | ||
=== [https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-0687 CVE-2023-0687] (glibc) === | |||
Bad CPE, should be marked as fixed in 2.38. Emailed NIST, data not updated yet. | |||
Revision as of 21:31, 24 August 2023
This is a list of CVEs which are currently being reported as open, and the current state.
CVE-2022-3219 (gnupg)
Hypothetical DoS. A patch was proposed but hasn't been reviewed or merged.
CVE-2022-33065 (libsndfile1)
Integer overflow, still open upstream.
CVE-2022-46456 (nasm)
Buffer overflow, still open upstream.
CVE-2023-0687 (glibc)
Bad CPE, should be marked as fixed in 2.38. Emailed NIST, data not updated yet.
