git: 77f0c7d39ad2 - main - security/vuxml: Add record for devel/hwloc2 < 2.9.2 CVE-2022-47022
- Go to: [ bottom of page ] [ top of archives ] [ this month ]
Date: Tue, 29 Oct 2024 15:39:30 UTC
The branch main has been updated by vvd:
URL: https://cgit.FreeBSD.org/ports/commit/?id=77f0c7d39ad20d4532efa6a8a10b568c2fa50aec
commit 77f0c7d39ad20d4532efa6a8a10b568c2fa50aec
Author: Älven <alster@vinterdalen.se>
AuthorDate: 2024-10-29 15:37:50 +0000
Commit: Vladimir Druzenko <vvd@FreeBSD.org>
CommitDate: 2024-10-29 15:37:50 +0000
security/vuxml: Add record for devel/hwloc2 < 2.9.2 CVE-2022-47022
PR: 282215
---
security/vuxml/vuln/2024.xml | 30 +++++++++++++++++++++++++++++-
1 file changed, 29 insertions(+), 1 deletion(-)
diff --git a/security/vuxml/vuln/2024.xml b/security/vuxml/vuln/2024.xml
index 9b5facf921c7..f4b945542076 100644
--- a/security/vuxml/vuln/2024.xml
+++ b/security/vuxml/vuln/2024.xml
@@ -1,3 +1,31 @@
+ <vuln vid="4b3a8e7d-9372-11ef-87ad-a8a15998b5cb">
+ <topic>hwloc2 -- Denial of service or other unspecified impacts</topic>
+ <affects>
+ <package>
+ <name>hwloc2</name>
+ <range><ge>2.1.0</ge><le>2.9.2</le></range>
+ </package>
+ </affects>
+ <description>
+ <body xmlns="http://www.w3.org/1999/xhtml">
+ <p>cve@mitre.org reports:</p>
+ <blockquote cite="https://github.com/open-mpi/hwloc/issues/544">
+ <p>An issue was discovered in open-mpi hwloc 2.1.0 allows attackers
+ to cause a denial of service or other unspecified impacts via
+ glibc-cpuset in topology-linux.c.</p>
+ </blockquote>
+ </body>
+ </description>
+ <references>
+ <cvename>CVE-2022-47022</cvename>
+ <url>https://nvd.nist.gov/vuln/detail/CVE-2022-47022</url>
+ </references>
+ <dates>
+ <discovery>2023-08-22</discovery>
+ <entry>2024-10-29</entry>
+ </dates>
+ </vuln>
+
<vuln vid="f07c8f87-8e65-11ef-81b8-659bf0027d16">
<topic>forgejo -- multiple vulnerabilities</topic>
<affects>
@@ -38,7 +66,7 @@
</references>
<dates>
<discovery>2024-10-28</discovery>
- <entry>2024-10-28</entry>
+ <entry>2024-10-29</entry>
</dates>
</vuln>