[Git][security-tracker-team/security-tracker][master] add webkit/chrome references

Fri Aug 19 22:25:04 BST 2022


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
7225f8f4 by Moritz Mühlenhoff at 2022-08-19T23:24:31+02:00
add webkit/chrome references

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -17996,6 +17996,7 @@ CVE-2022-1869 (Type Confusion in V8 in Google Chrome prior to 102.0.5005.61 allo
 	- chromium 102.0.5005.61-1
 	[buster] - chromium <end-of-life> (see DSA 5046)
 	[stretch] - chromium <end-of-life> (see DSA 4562)
+	NOTE: https://securitylab.github.com/advisories/GHSL-2022-043_Chromium/
 CVE-2022-1868 (Inappropriate implementation in Extensions API in Google Chrome prior  ...)
 	{DSA-5148-1}
 	- chromium 102.0.5005.61-1
@@ -122717,6 +122718,7 @@ CVE-2021-1789 (A type confusion issue was addressed with improved state handling
 	[stretch] - webkit2gtk <ignored> (Not covered by security support in stretch)
 	- wpewebkit 2.30.6-1
 	NOTE: https://webkitgtk.org/security/WSA-2021-0002.html
+	NOTE: https://starlabs.sg/blog/2022/08-exploiting-webkit-jspropertynameenumerator-out-of-bounds-read-cve-2021-1789/
 CVE-2021-1788 (A use after free issue was addressed with improved memory management.  ...)
 	{DSA-4923-1}
 	- webkit2gtk 2.32.0-2



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7225f8f43c38b5912c5751953b2feda265910dc1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7225f8f43c38b5912c5751953b2feda265910dc1
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220819/c070696f/attachment-0001.htm>
