[Git][security-tracker-team/security-tracker][master] Marked first batch of CVEs for nvidia-graphics-drivers package as no-dsa for...
Ola Lundqvist (@opal)
opal at debian.org
Tue Dec 27 22:12:38 GMT 2022
Ola Lundqvist pushed to branch master at Debian Security Tracker / security-tracker
Commits:
2e3d48cd by Ola Lundqvist at 2022-12-27T23:12:13+01:00
Marked first batch of CVEs for nvidia-graphics-drivers package as no-dsa for buster since non-free is not supported.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -16781,8 +16781,8 @@ CVE-2022-43552 [HTTP Proxy deny use-after-free]
NOTE: Fixed by: https://github.com/curl/curl/commit/4f20188ac644afe174be6005ef4f6ffba232b8b2 (curl-7_87_0)
CVE-2022-43551 (A vulnerability exists in curl <7.87.0 HSTS check that could be byp ...)
- curl 7.86.0-3 (bug #1026829)
- [buster] - curl <not-affected> (Vulnerable code not present)
[bullseye] - curl <not-affected> (Vulnerable code not present)
+ [buster] - curl <not-affected> (Vulnerable code not present)
NOTE: https://curl.se/docs/CVE-2022-43551.html
NOTE: Introduced by: https://github.com/curl/curl/commit/7385610d0c74c6a254fea5e4cd6e1d559d848c8c (curl-7_74_0)
NOTE: Enabled by default since: https://github.com/curl/curl/commit/d71ff2b9db566b3f4b2eb29441c2df86715d4339 (curl-7_77_0)
@@ -18665,8 +18665,8 @@ CVE-2022-42917
RESERVED
CVE-2022-42916 (In curl before 7.86.0, the HSTS check could be bypassed to trick it in ...)
- curl 7.86.0-1
- [buster] - curl <not-affected> (Vulnerable code not present)
[bullseye] - curl <not-affected> (Vulnerable code not present)
+ [buster] - curl <not-affected> (Vulnerable code not present)
NOTE: https://curl.se/docs/CVE-2022-42916.html
NOTE: Introduced with: https://github.com/curl/curl/commit/7385610d0c74c6a254fea5e4cd6e1d559d848c8c (curl-7_74_0)
NOTE: Enabled by default since: https://github.com/curl/curl/commit/d71ff2b9db566b3f4b2eb29441c2df86715d4339 (curl-7_77_0)
@@ -40655,6 +40655,7 @@ CVE-2022-34682
RESERVED
- nvidia-graphics-drivers 510.108.03-1 (bug #1025279)
[bullseye] - nvidia-graphics-drivers 470.161.03-1
+ [buster] - nvidia-graphics-drivers <no-dsa> (Non-free not supported)
- nvidia-graphics-drivers-tesla 510.108.03-1 (bug #1025287)
- nvidia-graphics-drivers-tesla-418 <unfixed> (bug #1025282)
[bullseye] - nvidia-graphics-drivers-tesla-418 <no-dsa> (Non-free not supported)
@@ -40672,9 +40673,11 @@ CVE-2022-34680
RESERVED
- nvidia-graphics-drivers 510.108.03-1 (bug #1025279)
[bullseye] - nvidia-graphics-drivers 470.161.03-1
+ [buster] - nvidia-graphics-drivers <no-dsa> (Non-free not supported)
- nvidia-graphics-drivers-legacy-340xx <unfixed> (bug #1025280)
- nvidia-graphics-drivers-legacy-390xx 390.157-1 (bug #1025281)
[bullseye] - nvidia-graphics-drivers-legacy-390xx 390.157-1~deb11u1
+ [buster] - nvidia-graphics-drivers-legacy-390xx <no-dsa> (Non-free not supported)
- nvidia-graphics-drivers-tesla 510.108.03-1 (bug #1025287)
- nvidia-graphics-drivers-tesla-418 <unfixed> (bug #1025282)
[bullseye] - nvidia-graphics-drivers-tesla-418 <no-dsa> (Non-free not supported)
@@ -40690,6 +40693,7 @@ CVE-2022-34679
RESERVED
- nvidia-graphics-drivers 510.108.03-1 (bug #1025279)
[bullseye] - nvidia-graphics-drivers 470.161.03-1
+ [buster] - nvidia-graphics-drivers <no-dsa> (Non-free not supported)
- nvidia-graphics-drivers-tesla 510.108.03-1 (bug #1025287)
- nvidia-graphics-drivers-tesla-418 <unfixed> (bug #1025282)
[bullseye] - nvidia-graphics-drivers-tesla-418 <no-dsa> (Non-free not supported)
@@ -40707,9 +40711,11 @@ CVE-2022-34677
RESERVED
- nvidia-graphics-drivers 510.108.03-1 (bug #1025279)
[bullseye] - nvidia-graphics-drivers 470.161.03-1
+ [buster] - nvidia-graphics-drivers <no-dsa> (Non-free not supported)
- nvidia-graphics-drivers-legacy-340xx <unfixed> (bug #1025280)
- nvidia-graphics-drivers-legacy-390xx 390.157-1 (bug #1025281)
[bullseye] - nvidia-graphics-drivers-legacy-390xx 390.157-1~deb11u1
+ [buster] - nvidia-graphics-drivers-legacy-390xx <no-dsa> (Non-free not supported)
- nvidia-graphics-drivers-tesla 510.108.03-1 (bug #1025287)
- nvidia-graphics-drivers-tesla-418 <unfixed> (bug #1025282)
[bullseye] - nvidia-graphics-drivers-tesla-418 <no-dsa> (Non-free not supported)
@@ -40727,9 +40733,11 @@ CVE-2022-34675
RESERVED
- nvidia-graphics-drivers 510.108.03-1 (bug #1025279)
[bullseye] - nvidia-graphics-drivers 470.161.03-1
+ [buster] - nvidia-graphics-drivers <no-dsa> (Non-free not supported)
- nvidia-graphics-drivers-legacy-340xx <unfixed> (bug #1025280)
- nvidia-graphics-drivers-legacy-390xx 390.157-1 (bug #1025281)
[bullseye] - nvidia-graphics-drivers-legacy-390xx 390.157-1~deb11u1
+ [buster] - nvidia-graphics-drivers-legacy-390xx <no-dsa> (Non-free not supported)
- nvidia-graphics-drivers-tesla 510.108.03-1 (bug #1025287)
- nvidia-graphics-drivers-tesla-418 <unfixed> (bug #1025282)
[bullseye] - nvidia-graphics-drivers-tesla-418 <no-dsa> (Non-free not supported)
@@ -40745,9 +40753,11 @@ CVE-2022-34674
RESERVED
- nvidia-graphics-drivers 510.108.03-1 (bug #1025279)
[bullseye] - nvidia-graphics-drivers 470.161.03-1
+ [buster] - nvidia-graphics-drivers <no-dsa> (Non-free not supported)
- nvidia-graphics-drivers-legacy-340xx <unfixed> (bug #1025280)
- nvidia-graphics-drivers-legacy-390xx 390.157-1 (bug #1025281)
[bullseye] - nvidia-graphics-drivers-legacy-390xx 390.157-1~deb11u1
+ [buster] - nvidia-graphics-drivers-legacy-390xx <no-dsa> (Non-free not supported)
- nvidia-graphics-drivers-tesla 510.108.03-1 (bug #1025287)
- nvidia-graphics-drivers-tesla-418 <unfixed> (bug #1025282)
[bullseye] - nvidia-graphics-drivers-tesla-418 <no-dsa> (Non-free not supported)
@@ -40769,9 +40779,11 @@ CVE-2022-34670
RESERVED
- nvidia-graphics-drivers 510.108.03-1 (bug #1025279)
[bullseye] - nvidia-graphics-drivers 470.161.03-1
+ [buster] - nvidia-graphics-drivers <no-dsa> (Non-free not supported)
- nvidia-graphics-drivers-legacy-340xx <unfixed> (bug #1025280)
- nvidia-graphics-drivers-legacy-390xx 390.157-1 (bug #1025281)
[bullseye] - nvidia-graphics-drivers-legacy-390xx 390.157-1~deb11u1
+ [buster] - nvidia-graphics-drivers-legacy-390xx <no-dsa> (Non-free not supported)
- nvidia-graphics-drivers-tesla 510.108.03-1 (bug #1025287)
- nvidia-graphics-drivers-tesla-418 <unfixed> (bug #1025282)
[bullseye] - nvidia-graphics-drivers-tesla-418 <no-dsa> (Non-free not supported)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2e3d48cd6e6cb00f6d7dcc2adb7a7ad9e49ad6a5
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2e3d48cd6e6cb00f6d7dcc2adb7a7ad9e49ad6a5
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221227/59af644a/attachment.htm>
More information about the debian-security-tracker-commits
mailing list