[Git][security-tracker-team/security-tracker][master] bugnums
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Tue Dec 13 19:13:23 GMT 2022
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
5aba3687 by Moritz Muehlenhoff at 2022-12-13T20:12:59+01:00
bugnums
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -979,7 +979,7 @@ CVE-2022-4417
CVE-2021-4244 (A vulnerability classified as problematic has been found in yikes-inc- ...)
NOT-FOR-US: yikes-inc-easy-mailchimp-extender
CVE-2021-4243 (A vulnerability was found in claviska jquery-minicolors up to 2.3.5. I ...)
- - jquery-minicolors <unfixed>
+ - jquery-minicolors <unfixed> (bug #1026050)
[bullseye] - jquery-minicolors <no-dsa> (Minor issue)
NOTE: https://github.com/claviska/jquery-minicolors/releases/tag/2.3.6
NOTE: https://github.com/claviska/jquery-minicolors/commit/ef134824a7f4110ada53ea6c173111a4fa2f48f3
@@ -1043,7 +1043,7 @@ CVE-2022-4398 (Integer Overflow or Wraparound in GitHub repository radareorg/rad
CVE-2022-4397 (A vulnerability was found in morontt zend-blog-number-2. It has been c ...)
NOT-FOR-US: morontt zend-blog-number-2
CVE-2022-4396 (** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in RDFlib py ...)
- - python-pyrdfa <unfixed>
+ - python-pyrdfa <unfixed> (bug #1026051)
NOTE: https://github.com/RDFLib/pyrdfa3/commit/ffd1d62dd50d5f4190013b39cedcdfbd81f3ce3e
NOTE: https://github.com/RDFLib/pyrdfa3/pull/40
CVE-2022-46906 (Insufficient processing of user input in WebSoft HCM 2021.2.3.327 allo ...)
@@ -8721,7 +8721,7 @@ CVE-2022-44638 (In libpixman in Pixman before 0.42.2, there is an out-of-bounds
NOTE: https://gitlab.freedesktop.org/pixman/pixman/-/issues/63
NOTE: https://bugs.chromium.org/p/project-zero/issues/detail?id=2345
CVE-2022-44637 (Redmine before 4.2.9 and 5.0.x before 5.0.4 allows persistent XSS in i ...)
- - redmine <unfixed>
+ - redmine <unfixed> (bug #1026048)
NOTE: https://www.redmine.org/projects/redmine/wiki/Security_Advisories
CVE-2022-44636
RESERVED
@@ -10244,10 +10244,10 @@ CVE-2022-44032 (An issue was discovered in the Linux kernel through 6.0.6. drive
NOTE: https://lore.kernel.org/lkml/20220915020834.GA110086@ubuntu/
NOTE: https://lore.kernel.org/lkml/20220919040701.GA302806@ubuntu/
CVE-2022-44031 (Redmine before 4.2.9 and 5.0.x before 5.0.4 allows persistent XSS in i ...)
- - redmine <unfixed>
+ - redmine <unfixed> (bug #1026048)
NOTE: https://www.redmine.org/projects/redmine/wiki/Security_Advisories
CVE-2022-44030 (Redmine 5.x before 5.0.4 allows downloading of file attachments of any ...)
- - redmine <unfixed>
+ - redmine <unfixed> (bug #1026048)
NOTE: https://www.redmine.org/projects/redmine/wiki/Security_Advisories
NOTE: https://github.com/redmine/redmine/commit/c02e3bfaec5fb45bd02d840b2306a875cc4f7f88
NOTE: https://github.com/redmine/redmine/commit/eea816ae0825a3d794e650d11a3909ace772152b
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5aba3687a4dff6f3c855f8e5b5819f79a8261dbf
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5aba3687a4dff6f3c855f8e5b5819f79a8261dbf
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221213/29bc8991/attachment.htm>
More information about the debian-security-tracker-commits
mailing list