[Git][security-tracker-team/security-tracker][master] linux, openjdk-17 DSAs

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
458d2c75 by Moritz Mühlenhoff at 2022-07-26T21:57:02+02:00
linux, openjdk-17 DSAs

- - - - -


3 changed files:

- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -28759,18 +28759,18 @@ CVE-2022-26308
 	RESERVED
 CVE-2022-26307 (LibreOffice supports the storage of passwords for web connections in t ...)
 	- libreoffice 1:7.3.3~rc1-2
-        [bullseye] - libreoffice <no-dsa> (Minor issue)
-        [buster] - libreoffice <no-dsa> (Minor issue)
+	[bullseye] - libreoffice <no-dsa> (Minor issue)
+	[buster] - libreoffice <no-dsa> (Minor issue)
 	NOTE: https://www.libreoffice.org/about-us/security/advisories/cve-2022-26307
 CVE-2022-26306 (LibreOffice supports the storage of passwords for web connections in t ...)
 	- libreoffice 1:7.3.3~rc1-2
-        [bullseye] - libreoffice <no-dsa> (Minor issue)
-        [buster] - libreoffice <no-dsa> (Minor issue)
+	[bullseye] - libreoffice <no-dsa> (Minor issue)
+	[buster] - libreoffice <no-dsa> (Minor issue)
 	NOTE: https://www.libreoffice.org/about-us/security/advisories/cve-2022-26306
 CVE-2022-26305 (An Improper Certificate Validation vulnerability in LibreOffice existe ...)
 	- libreoffice 1:7.3.2~rc2-1
-        [bullseye] - libreoffice <no-dsa> (Minor issue)
-        [buster] - libreoffice <no-dsa> (Minor issue)
+	[bullseye] - libreoffice <no-dsa> (Minor issue)
+	[buster] - libreoffice <no-dsa> (Minor issue)
 	NOTE: https://www.libreoffice.org/about-us/security/advisories/cve-2022-26305
 CVE-2022-26301 (TuziCMS v2.0.6 was discovered to contain a SQL injection vulnerability ...)
 	NOT-FOR-US: TuziCMS


=====================================
data/DSA/list
=====================================
@@ -1,3 +1,8 @@
+[26 Jul 2022] DSA-5192-1 openjdk-17 - security update
+	[bullseye] - openjdk-17 17.0.4+8-1~deb11u1
+[26 Jul 2022] DSA-5191-1 linux - security update
+	{CVE-2021-33655 CVE-2022-2318 CVE-2022-26365 CVE-2022-33740 CVE-2022-33741 CVE-2022-33742 CVE-2022-33743 CVE-2022-33744 CVE-2022-34918}
+	[bullseye] - linux 5.10.127-2
 [26 Jul 2022] DSA-5190-1 spip - security update
 	[buster] - spip 3.2.4-1+deb10u9
 	[bullseye] - spip 3.2.11-3+deb11u5


=====================================
data/dsa-needed.txt
=====================================
@@ -36,8 +36,8 @@ libpgjava (apo)
 --
 linux (carnil)
   Wait until more issues have piled up, though try to regulary rebase for point
-  releases to more recent v4.19.y versions.
---
+  releases to more recent v4.19.y and v5.10.y versions
+---
 ndpi/oldstable
 --
 netatalk



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/458d2c7512a43ab89a6106a985e1e866639ddd06

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/458d2c7512a43ab89a6106a985e1e866639ddd06
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220726/8a39da05/attachment-0001.htm>