[Git][security-tracker-team/security-tracker][master] new rust-crossbeam issue
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Fri Feb 25 21:27:49 GMT 2022
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
64a4de9c by Moritz Muehlenhoff at 2022-02-25T22:27:25+01:00
new rust-crossbeam issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -7322,7 +7322,9 @@ CVE-2022-23641 (Discourse is an open source discussion platform. In versions pri
CVE-2022-23640
RESERVED
CVE-2022-23639 (crossbeam-utils provides atomics, synchronization primitives, scoped t ...)
- TODO: check
+ - rust-crossbeam <unfixed>
+ NOTE: https://github.com/crossbeam-rs/crossbeam/security/advisories/GHSA-qc84-gqf4-9926
+ NOTE: https://github.com/crossbeam-rs/crossbeam/pull/781
CVE-2022-23638 (svg-sanitizer is a SVG/XML sanitizer written in PHP. A cross-site scri ...)
NOT-FOR-US: darylldoyle svg-sanitizer
CVE-2022-23637 (K-Box is a web-based application to manage documents, images, videos a ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/64a4de9c0e016fc0b73902a9b538b5afb94d0c86
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/64a4de9c0e016fc0b73902a9b538b5afb94d0c86
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220225/a7b0ff13/attachment.htm>
More information about the debian-security-tracker-commits
mailing list