[Git][security-tracker-team/security-tracker][master] 2 commits: Pinpoint upstream tag for CVE-2019-5815

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sun Jul 31 18:23:54 BST 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
95256bc8 by Salvatore Bonaccorso at 2022-07-31T19:11:02+02:00
Pinpoint upstream tag for CVE-2019-5815

- - - - -
193fda44 by Salvatore Bonaccorso at 2022-07-31T19:23:22+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1360,7 +1360,7 @@ CVE-2022-36449
 CVE-2022-36448
 	RESERVED
 CVE-2022-36447 (An inflation issue was discovered in Chia Network CAT1 Standard 1.0.0. ...)
-	TODO: check
+	NOT-FOR-US: Chia Network CAT1 Standard
 CVE-2022-36446 (software/apt-lib.pl in Webmin before 1.997 lacks HTML escaping for a U ...)
 	- webmin <removed>
 CVE-2022-36445
@@ -1533,7 +1533,7 @@ CVE-2022-36386
 CVE-2022-36379
 	RESERVED
 CVE-2022-36378 (Authenticated (author or higher user role) Stored Cross-Site Scripting ...)
-	TODO: check
+	NOT-FOR-US: WordPress plugin
 CVE-2022-36375 (Authenticated (high role user) WordPress Options Change vulnerability  ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2022-36371
@@ -237603,7 +237603,7 @@ CVE-2019-5815 (Type confusion in xsltNumberFormatGetMultipleLevel prior to libxs
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 	- libxslt 1.1.34-2
 	NOTE: https://bugs.chromium.org/p/chromium/issues/detail?id=930663
-	NOTE: https://gitlab.gnome.org/GNOME/libxslt/commit/08b62c25871b38d5d573515ca8a065b4b8f64f6b (v1.1.34)
+	NOTE: https://gitlab.gnome.org/GNOME/libxslt/commit/08b62c25871b38d5d573515ca8a065b4b8f64f6b (v1.1.34-rc2)
 CVE-2019-5814 (Insufficient policy enforcement in Blink in Google Chrome prior to 74. ...)
 	{DSA-4500-1}
 	- chromium 74.0.3729.108-1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/0b89b69e04a1fb76c030f2f0de5a53eba776bdb3...193fda440695cb9489796a18e1e77b95c28d64a9

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/0b89b69e04a1fb76c030f2f0de5a53eba776bdb3...193fda440695cb9489796a18e1e77b95c28d64a9
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220731/51873dd4/attachment.htm>

More information about the debian-security-tracker-commits mailing list