[Git][security-tracker-team/security-tracker][master] Ignore CVE-2022-21682 and CVE-2021-43860 for flatpak in buster
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Jan 30 20:01:51 GMT 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
053f0cd7 by Salvatore Bonaccorso at 2022-01-30T21:01:10+01:00
Ignore CVE-2022-21682 and CVE-2021-43860 for flatpak in buster
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -13521,6 +13521,7 @@ CVE-2022-21683 (Wagtail is a Django based content management system focused on f
CVE-2022-21682 (Flatpak is a Linux application sandboxing and distribution framework. ...)
{DSA-5049-1}
- flatpak 1.12.3-1
+ [buster] - flatpak <ignored> (Intrusive and risky to backport)
NOTE: https://github.com/flatpak/flatpak/security/advisories/GHSA-8ch7-5j3h-g4fx
NOTE: https://github.com/flatpak/flatpak/commit/445bddeee657fdc8d2a0a1f0de12975400d4fc1a
NOTE: Documentation: https://github.com/flatpak/flatpak/commit/4d11f77aa7fd3e64cfa80af89d92567ab9e8e6fa
@@ -13835,6 +13836,7 @@ CVE-2021-43861 (Mermaid is a Javascript based diagramming and charting tool that
CVE-2021-43860 (Flatpak is a Linux application sandboxing and distribution framework. ...)
{DSA-5049-1}
- flatpak 1.12.3-1
+ [buster] - flatpak <ignored> (Intrusive and risky to backport)
NOTE: https://github.com/flatpak/flatpak/security/advisories/GHSA-qpjc-vq3c-572j
NOTE: https://github.com/flatpak/flatpak/commit/ba818f504c926baaf6e362be8159cfacf994310e
NOTE: https://github.com/flatpak/flatpak/commit/d9a8f9d8ccc0b7c1135d0ecde006a75d25f66aee
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/053f0cd77086c6f73f0d6d33b93833e99ba796c0
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/053f0cd77086c6f73f0d6d33b93833e99ba796c0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220130/a6c257f4/attachment.htm>
More information about the debian-security-tracker-commits
mailing list