[Git][security-tracker-team/security-tracker][master] chromium dsa

Michael Gilbert mgilbert at debian.org
Wed Mar 11 00:44:44 GMT 2020



Michael Gilbert pushed to branch master at Debian Security Tracker / security-tracker


Commits:
dd9af921 by Michael Gilbert at 2020-03-11T00:51:39+00:00
chromium dsa

- - - - -


3 changed files:

- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -8928,8 +8928,7 @@ CVE-2020-6418 (Type confusion in V8 in Google Chrome prior to 80.0.3987.122 allo
 	- chromium 80.0.3987.122-1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2020-6417 (Inappropriate implementation in installer in Google Chrome prior to 80 ...)
-	- chromium 80.0.3987.106-1
-	[stretch] - chromium <end-of-life> (see DSA 4562)
+	- chromium <not-affected> (debian package does not support the chromium installer)
 CVE-2020-6416 (Insufficient data validation in streams in Google Chrome prior to 80.0 ...)
 	- chromium 80.0.3987.106-1
 	[stretch] - chromium <end-of-life> (see DSA 4562)


=====================================
data/DSA/list
=====================================
@@ -1,3 +1,6 @@
+[10 Mar 2020] DSA-4638-1 chromium - security update
+	{CVE-2019-19880 CVE-2019-19923 CVE-2019-19925 CVE-2019-19926 CVE-2020-6381 CVE-2020-6382 CVE-2020-6383 CVE-2020-6384 CVE-2020-6385 CVE-2020-6386 CVE-2020-6387 CVE-2020-6388 CVE-2020-6389 CVE-2020-6390 CVE-2020-6391 CVE-2020-6392 CVE-2020-6393 CVE-2020-6394 CVE-2020-6395 CVE-2020-6396 CVE-2020-6397 CVE-2020-6398 CVE-2020-6399 CVE-2020-6400 CVE-2020-6401 CVE-2020-6402 CVE-2020-6403 CVE-2020-6404 CVE-2020-6405 CVE-2020-6406 CVE-2020-6407 CVE-2020-6408 CVE-2020-6409 CVE-2020-6410 CVE-2020-6411 CVE-2020-6412 CVE-2020-6413 CVE-2020-6414 CVE-2020-6415 CVE-2020-6416 CVE-2020-6418 CVE-2020-6420}
+	[buster] - chromium 80.0.3987.132-1~deb10u1
 [09 Mar 2020] DSA-4637-1 network-manager-ssh - security update
 	{CVE-2020-9355}
 	[stretch] - network-manager-ssh 1.2.1-1+deb9u1


=====================================
data/dsa-needed.txt
=====================================
@@ -18,8 +18,6 @@ amd64-microcode
   NOTE: 20200224: The maintainer says version 3.20191218.1 can be
   NOTE: 20200224: backported to all stable releases.
 --
-chromium/stable
---
 firefox-esr (jmm)
 --
 graphicsmagick (jmm)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dd9af921db7783cf74f747e08cc8d198a7e490c5

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dd9af921db7783cf74f747e08cc8d198a7e490c5
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200311/31232812/attachment-0001.html>


More information about the debian-security-tracker-commits mailing list