[Git][security-tracker-team/security-tracker][master] buster/bullseye triage
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Mon Jul 18 13:14:15 BST 2022
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
715d948a by Moritz Muehlenhoff at 2022-07-18T14:14:04+02:00
buster/bullseye triage
- - - - -
2 changed files:
- data/CVE/list
- data/dsa-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -23082,6 +23082,8 @@ CVE-2022-26423
RESERVED
CVE-2022-1071 (User after free in mrb_vm_exec in GitHub repository mruby/mruby prior ...)
- mruby <unfixed> (bug #1014968)
+ [bullseye] - mruby <no-dsa> (Minor issue)
+ [buster] - mruby <no-dsa> (Minor issue)
NOTE: https://huntr.dev/bounties/6597ece9-07af-415b-809b-919ce0a17cf3
NOTE: https://github.com/mruby/mruby/commit/aaa28a508903041dd7399d4159a8ace9766b022f
CVE-2022-1070
@@ -57857,9 +57859,13 @@ CVE-2021-41684
RESERVED
CVE-2021-41683 (There is a stack-overflow at ecma-helpers.c:326 in ecma_get_lex_env_ty ...)
- iotjs <unfixed> (bug #1015219)
+ [bullseye] - iotjs <no-dsa> (Minor issue)
+ [buster] - iotjs <no-dsa> (Minor issue)
NOTE: https://github.com/jerryscript-project/jerryscript/issues/4745
CVE-2021-41682 (There is a heap-use-after-free at ecma-helpers-string.c:1940 in ecma_c ...)
- iotjs <unfixed> (bug #1015219)
+ [bullseye] - iotjs <no-dsa> (Minor issue)
+ [buster] - iotjs <no-dsa> (Minor issue)
NOTE: https://github.com/jerryscript-project/jerryscript/issues/4747
NOTE: https://github.com/jerryscript-project/jerryscript/commit/3ad76f932c8d2e3b9ba2d95e64848698ec7d7290
CVE-2021-41681
=====================================
data/dsa-needed.txt
=====================================
@@ -20,6 +20,8 @@ epiphany-browser
--
freecad (aron)
--
+jetty
+--
kicad (jmm)
--
kopanocore/oldstable
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/715d948a18ada3fc31c43519dfc953392fcbedf4
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/715d948a18ada3fc31c43519dfc953392fcbedf4
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220718/4be93649/attachment.htm>
More information about the debian-security-tracker-commits
mailing list