[Git][security-tracker-team/security-tracker][master] webkit2gtk / wpewebkit upstream advisory WSA-2022-0002
Alberto Garcia (@berto)
berto at debian.org
Wed Feb 9 18:57:22 GMT 2022
Alberto Garcia pushed to branch master at Debian Security Tracker / security-tracker
Commits:
7e590286 by Alberto Garcia at 2022-02-09T19:56:49+01:00
webkit2gtk / wpewebkit upstream advisory WSA-2022-0002
- - - - -
2 changed files:
- data/CVE/list
- data/dsa-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -7208,8 +7208,12 @@ CVE-2022-22591
RESERVED
CVE-2022-22590
RESERVED
-CVE-2022-22589
+CVE-2022-22589 [A validation issue was addressed with improved input sanitization]
RESERVED
+ - webkit2gtk 2.34.5-1
+ [stretch] - webkit2gtk <ignored> (Not covered by security support in stretch)
+ - wpewebkit 2.34.5-1
+ NOTE: https://webkitgtk.org/security/WSA-2022-0002.html
CVE-2022-22588
RESERVED
CVE-2022-22587
@@ -71805,8 +71809,12 @@ CVE-2021-22592
RESERVED
CVE-2021-22591
RESERVED
-CVE-2021-22590
+CVE-2021-22590 [A use after free issue was addressed with improved memory management]
RESERVED
+ - webkit2gtk 2.34.5-1
+ [stretch] - webkit2gtk <ignored> (Not covered by security support in stretch)
+ - wpewebkit 2.34.5-1
+ NOTE: https://webkitgtk.org/security/WSA-2022-0002.html
CVE-2021-22589
RESERVED
CVE-2021-22588
@@ -102933,8 +102941,12 @@ CVE-2020-22594
RESERVED
CVE-2020-22593
RESERVED
-CVE-2020-22592
+CVE-2020-22592 [A logic issue was addressed with improved state management]
RESERVED
+ - webkit2gtk 2.34.5-1
+ [stretch] - webkit2gtk <ignored> (Not covered by security support in stretch)
+ - wpewebkit 2.34.5-1
+ NOTE: https://webkitgtk.org/security/WSA-2022-0002.html
CVE-2020-22591
RESERVED
CVE-2020-22590
=====================================
data/dsa-needed.txt
=====================================
@@ -56,3 +56,7 @@ trafficserver (jmm)
--
varnish (fw)
--
+webkit2gtk
+--
+wpewebkit
+--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7e59028629c9a412a05df176ec824037892f50e8
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7e59028629c9a412a05df176ec824037892f50e8
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220209/a3cf0a48/attachment.htm>
More information about the debian-security-tracker-commits
mailing list