[Git][security-tracker-team/security-tracker][master] Update information for CVE-2023-28938/mdadm

Sat, 02 Sep 2023 11:45:29 -0700 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
b8cbe59c by Salvatore Bonaccorso at 2023-09-02T20:44:50+02:00
Update information for CVE-2023-28938/mdadm

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -20760,8 +20760,11 @@ CVE-2023-1791 (A vulnerability has been found in 
SourceCodester Simple Task Allo
 CVE-2023-1790 (A vulnerability, which was classified as problematic, was found 
in Sou ...)
        NOT-FOR-US: SourceCodester Simple Task Allocation System
 CVE-2023-28938 (Uncontrolled resource consumption in some Intel(R) SSD Tools 
software  ...)
-       - mdadm <undetermined>
+       - mdadm 4.2~rc2-2 (unimportant)
        NOTE: 
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00690.html
+       NOTE: Fixed by: 
https://git.kernel.org/pub/scm/utils/mdadm/mdadm.git/commit/?id=7d374a1869d3a84971d027a7f4233878c8f25a62
 (mdadm-4.2-rc2)
+       NOTE: Negligible security impact as the memory leak is after "mdadm 
--detail" which
+       NOTE: is one shoot action.
        TODO: check details, fixes should be somewhere prior to mdadm-4.2-rc2
 CVE-2023-28736 (Buffer overflow in some Intel(R) SSD Tools software before 
version mda ...)
        - mdadm <undetermined>



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b8cbe59cf0c876bd5dc6ef97faf81da986f740ca

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b8cbe59cf0c876bd5dc6ef97faf81da986f740ca
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to