[Git][security-tracker-team/security-tracker][master] various bugnums

Moritz Muehlenhoff (@jmm) jmm at debian.org
Wed Apr 27 13:31:59 BST 2022 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
68736fcb by Moritz Mühlenhoff at 2022-04-27T14:31:28+02:00
various bugnums

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2209,7 +2209,7 @@ CVE-2022-1305
 	[buster] - chromium <end-of-life> (see DSA 5046)
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2022-1304 (An out-of-bounds read/write vulnerability was found in e2fsprogs 1.46. ...)
-	- e2fsprogs <unfixed>
+	- e2fsprogs <unfixed> (bug #1010263)
 	[bullseye] - e2fsprogs <no-dsa> (Minor issue)
 	[buster] - e2fsprogs <no-dsa> (Minor issue)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2069726
@@ -2709,7 +2709,7 @@ CVE-2022-28807
 CVE-2022-28806
 	RESERVED
 CVE-2022-28805 (singlevar in lparser.c in Lua through 5.4.4 lacks a certain luaK_exp2a ...)
-	- lua5.4 <unfixed>
+	- lua5.4 <unfixed> (bug #1010265)
 	[bullseye] - lua5.4 <no-dsa> (Minor issue)
 	NOTE: https://github.com/lua/lua/commit/1f3c6f4534c6411313361697d98d1145a1f030fa
 	NOTE: http://lua-users.org/lists/lua-l/2022-02/msg00001.html
@@ -3763,7 +3763,7 @@ CVE-2022-28393
 CVE-2022-28392
 	RESERVED
 CVE-2022-28391 (BusyBox through 1.35.0 allows remote attackers to execute arbitrary co ...)
-	- busybox <unfixed>
+	- busybox <unfixed> (bug #1010264)
 	[bullseye] - busybox <no-dsa> (Minor issue)
 	[buster] - busybox <no-dsa> (Minor issue)
 	NOTE: https://gitlab.alpinelinux.org/alpine/aports/-/issues/13661



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/68736fcb8ee8abe318cde90ad1458b074be9cc96

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/68736fcb8ee8abe318cde90ad1458b074be9cc96
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220427/dfa0ac07/attachment.htm>

More information about the debian-security-tracker-commits mailing list