diff options
| author | Sofian Brabez <sbz@FreeBSD.org> | 2022-03-22 17:30:56 +0000 |
|---|---|---|
| committer | Sofian Brabez <sbz@FreeBSD.org> | 2022-03-22 17:40:36 +0000 |
| commit | a9ffb4a5f215631da067740c968b1fb75b697fe4 (patch) | |
| tree | 02a35e0544d457d96a3e5b321b9b34d3ed144654 /security | |
| parent | 8c1eba063a9c033fd07c5566edd6a2d146b5bc4e (diff) | |
| download | ports-a9ffb4a5f215631da067740c968b1fb75b697fe4.tar.gz ports-a9ffb4a5f215631da067740c968b1fb75b697fe4.zip | |
security/vuxml: Document net/tcpslice CVE-2021-41043 vulnerability
Diffstat (limited to 'security')
| -rw-r--r-- | security/vuxml/vuln-2022.xml | 26 |
1 files changed, 26 insertions, 0 deletions
diff --git a/security/vuxml/vuln-2022.xml b/security/vuxml/vuln-2022.xml index bdfff5e2b369..3a2151fab546 100644 --- a/security/vuxml/vuln-2022.xml +++ b/security/vuxml/vuln-2022.xml @@ -1,3 +1,29 @@ + <vuln vid="61f416ff-aa00-11ec-b439-000d3a450398"> + <topic>tcpslice -- heap-based use-after-free in extract_slice()</topic> + <affects> + <package> + <name>tcpslice</name> + <range><lt>1.5,1</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml"> + <p>The Tcpdump Group reports:</p> + <blockquote cite="https://github.com/the-tcpdump-group/tcpslice/commit/030859fce9c77417de657b9bb29c0f78c2d68f4a"> + <p>heap-based use-after-free in extract_slice()</p> + </blockquote> + </body> + </description> + <references> + <cvename>CVE-2021-41043</cvename> + <url>https://github.com/the-tcpdump-group/tcpslice/issues/11</url> + </references> + <dates> + <discovery>2021-09-13</discovery> + <entry>2022-03-22</entry> + </dates> + </vuln> + <vuln vid="e2af876f-a7c8-11ec-9a2a-002324b2fba8"> <topic>go -- multiple vulnerabilities</topic> <affects> |