[Git][security-tracker-team/security-tracker][master] CVE-2022-4415: fix affected version, note on prep commit

Luca Boccassi (@bluca) bluca at debian.org
Thu Dec 22 10:27:34 GMT 2022 


Luca Boccassi pushed to branch master at Debian Security Tracker / security-tracker


Commits:
34034ef8 by Luca Boccassi at 2022-12-22T11:26:17+01:00
CVE-2022-4415: fix affected version, note on prep commit

The sysctl change was introduced in 246, not 247.
The prep commit is needed for the commit on main, but not the one on the v247 stable branch.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3936,10 +3936,10 @@ CVE-2022-4415
 	- systemd <unfixed> (bug #1026831)
 	[bullseye] - systemd <no-dsa> (Minor issue; can be fixed via point release)
 	[buster] - systemd <not-affected> (Vulnerable code introduced later)
-	NOTE: Preparation: https://github.com/systemd/systemd/commit/510a146634f3e095b34e2a26023b1b1f99dcb8c0
+	NOTE: Preparation (main branch commit only): https://github.com/systemd/systemd/commit/510a146634f3e095b34e2a26023b1b1f99dcb8c0
 	NOTE: Fixed by: https://github.com/systemd/systemd/commit/3e4d0f6cf99f8677edd6a237382a65bfe758de03
 	NOTE: Fixed by: https://github.com/systemd/systemd-stable/commit/bb47600aeb38c68c857fbf0ee5f66c3144dd81ce (v247.13)
-	NOTE: Affects only v247 and newer, and only if building with libacl support
+	NOTE: Affects only v246 and newer, and only if building with libacl support
 	NOTE: https://www.openwall.com/lists/oss-security/2022/12/21/3
 CVE-2022-4414 (Cross-site Scripting (XSS) - DOM in GitHub repository nuxt/framework p ...)
 	NOT-FOR-US: nuxt



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/34034ef8c66ff7ac6c21bdb6cd7e29d5a218c7a3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/34034ef8c66ff7ac6c21bdb6cd7e29d5a218c7a3
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221222/a4057eb4/attachment.htm>

More information about the debian-security-tracker-commits mailing list