[Git][security-tracker-team/security-tracker][master] Add new gitlab issues from 2022-02-25 release

Sat Feb 26 19:42:12 GMT 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5252c923 by Salvatore Bonaccorso at 2022-02-26T20:41:36+01:00
Add new gitlab issues from 2022-02-25 release

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -661,6 +661,8 @@ CVE-2022-0752
 	RESERVED
 CVE-2022-0751
 	RESERVED
+	- gitlab <unfixed>
+	NOTE: https://about.gitlab.com/releases/2022/02/25/critical-security-release-gitlab-14-8-2-released/
 CVE-2022-0750
 	RESERVED
 CVE-2022-0749
@@ -744,18 +746,24 @@ CVE-2022-0742
 	RESERVED
 CVE-2022-0741
 	RESERVED
+	- gitlab <unfixed>
+	NOTE: https://about.gitlab.com/releases/2022/02/25/critical-security-release-gitlab-14-8-2-released/
 CVE-2022-0740
 	RESERVED
 CVE-2022-0739
 	RESERVED
 CVE-2022-0738
 	RESERVED
+	- gitlab <not-affected> (Vulnerable code introduced later)
+	NOTE: https://about.gitlab.com/releases/2022/02/25/critical-security-release-gitlab-14-8-2-released/
 CVE-2022-0737
 	RESERVED
 CVE-2022-0736 (Insecure Temporary File in GitHub repository mlflow/mlflow prior to 1. ...)
 	NOT-FOR-US: mlflow
 CVE-2022-0735
 	RESERVED
+	- gitlab <unfixed>
+	NOTE: https://about.gitlab.com/releases/2022/02/25/critical-security-release-gitlab-14-8-2-released/
 CVE-2021-4223
 	RESERVED
 CVE-2022-25809 (Improper Neutralization of audio output from 3rd and 4th Generation Am ...)
@@ -3642,6 +3650,8 @@ CVE-2022-0550
 	RESERVED
 CVE-2022-0549
 	RESERVED
+	- gitlab <unfixed>
+	NOTE: https://about.gitlab.com/releases/2022/02/25/critical-security-release-gitlab-14-8-2-released/
 CVE-2022-0548
 	RESERVED
 CVE-2022-24696
@@ -4472,6 +4482,8 @@ CVE-2022-0490
 	RESERVED
 CVE-2022-0489
 	RESERVED
+	- gitlab <unfixed>
+	NOTE: https://about.gitlab.com/releases/2022/02/25/critical-security-release-gitlab-14-8-2-released/
 CVE-2022-0488
 	RESERVED
 CVE-2022-24399
@@ -12518,6 +12530,8 @@ CVE-2021-4192 (vim is vulnerable to Use After Free ...)
 	NOTE: Fixed by: https://github.com/vim/vim/commit/4c13e5e6763c6eb36a343a2b8235ea227202e952 (v8.2.3949)
 CVE-2021-4191
 	RESERVED
+	- gitlab <unfixed>
+	NOTE: https://about.gitlab.com/releases/2022/02/25/critical-security-release-gitlab-14-8-2-released/
 CVE-2021-23147 (Netgear Nighthawk R6700 version 1.0.4.120 does not have sufficient pro ...)
 	NOT-FOR-US: Netgear
 CVE-2022-22282



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5252c92311739f86ce2d6fc56be46ed8c32ce31e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5252c92311739f86ce2d6fc56be46ed8c32ce31e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220226/82110157/attachment.htm>
