[Git][security-tracker-team/security-tracker][master] additional CVE assigned for old Chrome release
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Fri Jul 29 11:26:12 BST 2022
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d91b29cc by Moritz Muehlenhoff at 2022-07-29T12:25:44+02:00
additional CVE assigned for old Chrome release
- - - - -
2 changed files:
- data/CVE/list
- data/DSA/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3038,7 +3038,8 @@ CVE-2022-2400 (External Control of File Name or Path in GitHub repository dompdf
NOTE: https://huntr.dev/bounties/a6da5e5e-86be-499a-a3c3-2950f749202a
NOTE: https://github.com/dompdf/dompdf/commit/99aeec1efec9213e87098d42eb09439e7ee0bb6a
CVE-2022-2399 (Use after free in WebGPU in Google Chrome prior to 100.0.4896.88 allow ...)
- TODO: check
+ - chromium 100.0.4896.88-1
+ [buster] - chromium <end-of-life> (see DSA 5046)
CVE-2022-35741 (Apache CloudStack version 4.5.0 and later has a SAML 2.0 authenticatio ...)
NOT-FOR-US: Apache CloudStack
CVE-2022-2398
=====================================
data/DSA/list
=====================================
@@ -257,7 +257,7 @@
{CVE-2022-1364}
[bullseye] - chromium 100.0.4896.127-1~deb11u1
[13 Apr 2022] DSA-5120-1 chromium - security update
- {CVE-2022-1305 CVE-2022-1306 CVE-2022-1307 CVE-2022-1308 CVE-2022-1309 CVE-2022-1310 CVE-2022-1311 CVE-2022-1312 CVE-2022-1313 CVE-2022-1314}
+ {CVE-2022-1305 CVE-2022-1306 CVE-2022-1307 CVE-2022-1308 CVE-2022-1309 CVE-2022-1310 CVE-2022-1311 CVE-2022-1312 CVE-2022-1313 CVE-2022-1314 CVE-2022-2399}
[bullseye] - chromium 100.0.4896.88-1~deb11u1
[13 Apr 2022] DSA-5119-1 subversion - security update
{CVE-2021-28544 CVE-2022-24070}
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d91b29ccd0cf95a3a38005f123c679b948abf322
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d91b29ccd0cf95a3a38005f123c679b948abf322
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220729/654c11c0/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list