[Git][security-tracker-team/security-tracker][master] Add CVE-2022-3933{1,2,3,4}/nextcloud-desktop
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Dec 1 20:55:21 GMT 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
58a84f5c by Salvatore Bonaccorso at 2022-12-01T21:54:33+01:00
Add CVE-2022-3933{1,2,3,4}/nextcloud-desktop
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -21088,13 +21088,25 @@ CVE-2022-39336
CVE-2022-39335
RESERVED
CVE-2022-39334 (Nextcloud desktop is the desktop sync client for Nextcloud. Versions p ...)
- TODO: check
+ - nextcloud-desktop 3.6.1-1
+ NOTE: https://github.com/nextcloud/security-advisories/security/advisories/GHSA-82xx-98xv-4jxv
+ NOTE: https://github.com/nextcloud/desktop/issues/4927
+ NOTE: https://github.com/nextcloud/desktop/pull/5022
CVE-2022-39333 (Nexcloud desktop is the Desktop sync client for Nextcloud. An attacker ...)
- TODO: check
+ - nextcloud-desktop 3.6.1-1
+ NOTE: https://github.com/nextcloud/security-advisories/security/advisories/GHSA-92p9-x79h-2mj8
+ NOTE: https://github.com/nextcloud/desktop/pull/4972
+ NOTE: https://hackerone.com/reports/1711847
CVE-2022-39332 (Nexcloud desktop is the Desktop sync client for Nextcloud. An attacker ...)
- TODO: check
+ - nextcloud-desktop 3.6.1-1
+ NOTE: https://github.com/nextcloud/security-advisories/security/advisories/GHSA-q9f6-4r6r-h74p
+ NOTE: https://github.com/nextcloud/desktop/pull/4972
+ NOTE: https://hackerone.com/reports/1668028
CVE-2022-39331 (Nexcloud desktop is the Desktop sync client for Nextcloud. An attacker ...)
- TODO: check
+ - nextcloud-desktop 3.6.1-1
+ NOTE: https://github.com/nextcloud/security-advisories/security/advisories/GHSA-c3xh-q694-6rc5
+ NOTE: https://github.com/nextcloud/desktop/pull/4944
+ NOTE: https://hackerone.com/reports/1668028
CVE-2022-39330 (Nextcloud Server is the file server software for Nextcloud, a self-hos ...)
- nextcloud-server <itp> (bug #941708)
CVE-2022-39329 (Nextcloud Server is the file server software for Nextcloud, a self-hos ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/58a84f5ccca8fdf907d2ec4a6de0882a14033c9f
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/58a84f5ccca8fdf907d2ec4a6de0882a14033c9f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221201/59b7cb6a/attachment.htm>
More information about the debian-security-tracker-commits
mailing list