[Git][security-tracker-team/security-tracker][master] Cleanu some older chromium CVEs which got withdrawn by the assigning CNA

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Nov 3 08:50:40 GMT 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
afc35cb8 by Salvatore Bonaccorso at 2021-11-03T09:50:27+01:00
Cleanu some older chromium CVEs which got withdrawn by the assigning CNA

- - - - -


2 changed files:

- data/CVE/list
- data/DSA/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -14828,8 +14828,6 @@ CVE-2021-37961 (Use after free in Tab Strip in Google Chrome prior to 94.0.4606.
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37960
 	REJECTED
-	- chromium <unfixed>
-	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-37959 (Use after free in Task Manager in Google Chrome prior to 94.0.4606.54  ...)
 	- chromium <unfixed>
 	[stretch] - chromium <end-of-life> (see DSA 4562)
@@ -32673,8 +32671,6 @@ CVE-2021-30632 (Out of bounds write in V8 in Google Chrome prior to 93.0.4577.82
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-30631
 	REJECTED
-	- chromium 93.0.4577.82-1
-	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-30630 (Inappropriate implementation in Blink in Google Chrome prior to 93.0.4 ...)
 	- chromium 93.0.4577.82-1
 	[stretch] - chromium <end-of-life> (see DSA 4562)
@@ -181398,7 +181394,6 @@ CVE-2019-5864 (Insufficient data validation in CORS in Google Chrome prior to 76
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2019-5863
 	REJECTED
-	- chromium <not-affected> (Windows-specific)
 CVE-2019-5862 (Insufficient data validation in AppCache in Google Chrome prior to 76. ...)
 	{DSA-4500-1}
 	- chromium 76.0.3809.87-1
@@ -235028,10 +235023,8 @@ CVE-2018-6060 (Use after free in WebAudio in Google Chrome prior to 65.0.3325.14
 	[wheezy] - chromium-browser <end-of-life> (Not supported in Wheezy)
 CVE-2018-6059
 	REJECTED
-	- chromium-browser <not-affected> (Chromium doesn't bundle Flash)
 CVE-2018-6058
 	REJECTED
-	- chromium-browser <not-affected> (Chromium doesn't bundle Flash)
 CVE-2018-6057 (Lack of special casing of Android ashmem in Google Chrome prior to 65. ...)
 	{DSA-4182-1}
 	- chromium-browser 65.0.3325.146-1
@@ -235101,9 +235094,6 @@ CVE-2018-6045 (Insufficient policy enforcement in DevTools in Google Chrome prio
 	[wheezy] - chromium-browser <end-of-life> (Not supported in Wheezy)
 CVE-2018-6044
 	REJECTED
-	{DSA-4256-1}
-	- chromium-browser 68.0.3440.75-1
-	[jessie] - chromium-browser <end-of-life> (End of life, see DSA 4020)
 CVE-2018-6043 (Insufficient data validation in External Protocol Handler in Google Ch ...)
 	{DSA-4103-1}
 	- chromium-browser 64.0.3282.119-1


=====================================
data/DSA/list
=====================================
@@ -2447,7 +2447,7 @@
 	{CVE-2018-10906}
 	[stretch] - fuse 2.9.7-1+deb9u1
 [26 Jul 2018] DSA-4256-1 chromium-browser - security update
-	{CVE-2018-4117 CVE-2018-6044 CVE-2018-6150 CVE-2018-6151 CVE-2018-6152 CVE-2018-6153 CVE-2018-6154 CVE-2018-6155 CVE-2018-6156 CVE-2018-6157 CVE-2018-6158 CVE-2018-6159 CVE-2018-6161 CVE-2018-6162 CVE-2018-6163 CVE-2018-6164 CVE-2018-6165 CVE-2018-6166 CVE-2018-6167 CVE-2018-6168 CVE-2018-6169 CVE-2018-6170 CVE-2018-6171 CVE-2018-6172 CVE-2018-6173 CVE-2018-6174 CVE-2018-6175 CVE-2018-6176 CVE-2018-6177 CVE-2018-6178 CVE-2018-6179 CVE-2018-17461 CVE-2018-17460 CVE-2018-16064}
+	{CVE-2018-4117 CVE-2018-6150 CVE-2018-6151 CVE-2018-6152 CVE-2018-6153 CVE-2018-6154 CVE-2018-6155 CVE-2018-6156 CVE-2018-6157 CVE-2018-6158 CVE-2018-6159 CVE-2018-6161 CVE-2018-6162 CVE-2018-6163 CVE-2018-6164 CVE-2018-6165 CVE-2018-6166 CVE-2018-6167 CVE-2018-6168 CVE-2018-6169 CVE-2018-6170 CVE-2018-6171 CVE-2018-6172 CVE-2018-6173 CVE-2018-6174 CVE-2018-6175 CVE-2018-6176 CVE-2018-6177 CVE-2018-6178 CVE-2018-6179 CVE-2018-17461 CVE-2018-17460 CVE-2018-16064}
 	[stretch] - chromium-browser 68.0.3440.75-1~deb9u1
 [24 Jul 2018] DSA-4255-1 ant - security update
 	{CVE-2018-10886}



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/afc35cb8c8582ed4eb7cb910f1a8d99829db1bcd

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/afc35cb8c8582ed4eb7cb910f1a8d99829db1bcd
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211103/2b7cfc5f/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list