[Git][security-tracker-team/security-tracker][master] new redmine issues

Moritz Muehlenhoff (@jmm) jmm at debian.org
Tue Dec 13 19:01:39 GMT 2022 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
040549b7 by Moritz Muehlenhoff at 2022-12-13T20:01:25+01:00
new redmine issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -8719,7 +8719,8 @@ CVE-2022-44638 (In libpixman in Pixman before 0.42.2, there is an out-of-bounds
 	NOTE: https://gitlab.freedesktop.org/pixman/pixman/-/issues/63
 	NOTE: https://bugs.chromium.org/p/project-zero/issues/detail?id=2345
 CVE-2022-44637 (Redmine before 4.2.9 and 5.0.x before 5.0.4 allows persistent XSS in i ...)
-	TODO: check
+	- redmine <unfixed>
+	NOTE: https://www.redmine.org/projects/redmine/wiki/Security_Advisories
 CVE-2022-44636
 	RESERVED
 CVE-2022-3846 (The Workreap WordPress theme before 2.6.3 has a vulnerability with the ...)
@@ -10241,7 +10242,8 @@ CVE-2022-44032 (An issue was discovered in the Linux kernel through 6.0.6. drive
 	NOTE: https://lore.kernel.org/lkml/20220915020834.GA110086@ubuntu/
 	NOTE: https://lore.kernel.org/lkml/20220919040701.GA302806@ubuntu/
 CVE-2022-44031 (Redmine before 4.2.9 and 5.0.x before 5.0.4 allows persistent XSS in i ...)
-	TODO: check
+	- redmine <unfixed>
+	NOTE: https://www.redmine.org/projects/redmine/wiki/Security_Advisories
 CVE-2022-44030 (Redmine 5.x before 5.0.4 allows downloading of file attachments of any ...)
 	- redmine <unfixed>
 	NOTE: https://www.redmine.org/projects/redmine/wiki/Security_Advisories



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/040549b7a798ef3a7ea9e3ad2abe7ace8a33620a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/040549b7a798ef3a7ea9e3ad2abe7ace8a33620a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221213/d39f3aeb/attachment.htm>

More information about the debian-security-tracker-commits mailing list