[Git][security-tracker-team/security-tracker][master] ruby-sinatra, dlt-daemon fixed in sid
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Sat Aug 20 21:51:34 BST 2022
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
fb3e2bda by Moritz Muehlenhoff at 2022-08-20T22:51:04+02:00
ruby-sinatra, dlt-daemon fixed in sid
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -18795,7 +18795,7 @@ CVE-2022-31293
CVE-2022-31292
RESERVED
CVE-2022-31291 (An issue in dlt_config_file_parser.c of dlt-daemon v2.18.8 allows atta ...)
- - dlt-daemon <unfixed> (bug #1014534)
+ - dlt-daemon 2.18.6-2.1 (bug #1014534)
[bullseye] - dlt-daemon <no-dsa> (Minor issue)
[buster] - dlt-daemon <no-dsa> (Minor issue)
NOTE: https://github.com/COVESA/dlt-daemon/pull/376
@@ -22731,7 +22731,7 @@ CVE-2022-29972 (An argument injection vulnerability in the browser-based authent
CVE-2022-29971 (An argument injection vulnerability in the browser-based authenticatio ...)
NOT-FOR-US: Magnitude Simba Amazon Athena ODBC Driver
CVE-2022-29970 (Sinatra before 2.2.0 does not validate that the expanded path matches ...)
- - ruby-sinatra <unfixed> (bug #1014717)
+ - ruby-sinatra 2.2.2-1 (bug #1014717)
NOTE: https://github.com/sinatra/sinatra/commit/462c3ca1db53ed3cfc394cf5948e9c948ad1c10e (v2.2.0)
CVE-2022-29969 (The RSS extension before 2022-04-29 for MediaWiki allows XSS via an rs ...)
NOT-FOR-US: RSS extension for MediaWiki
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fb3e2bda64687f3cc6e2c1a7277a98a964403ba7
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fb3e2bda64687f3cc6e2c1a7277a98a964403ba7
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220820/63e51f3d/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list