[Git][security-tracker-team/security-tracker][master] xpdf n/a

Moritz Muehlenhoff (@jmm) jmm at debian.org
Mon Jun 20 12:46:34 BST 2022 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e5b1098f by Moritz Muehlenhoff at 2022-06-20T13:46:11+02:00
xpdf n/a
nomad n/a

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -8708,7 +8708,7 @@ CVE-2022-30777 (Parallels H-Sphere 3.6.1713 allows XSS via the index_en.php from
 CVE-2022-30776 (atmail 6.5.0 allows XSS via the index.php/admin/index/ error parameter ...)
 	- atmailopen <removed>
 CVE-2022-30775 (xpdf 4.04 allocates excessive memory when presented with crafted input ...)
-	TODO: check
+	- xpdf <not-affected> (Debian uses poppler, which is not affected)
 CVE-2022-30774
 	RESERVED
 CVE-2022-30773
@@ -9926,7 +9926,7 @@ CVE-2022-30326 (An issue was found on TRENDnet TEW-831DR 1.0 601.130.1.1356 devi
 CVE-2022-30325 (An issue was found on TRENDnet TEW-831DR 1.0 601.130.1.1356 devices. T ...)
 	NOT-FOR-US: TRENDnet
 CVE-2022-30324 (HashiCorp Nomad and Nomad Enterprise version 0.2.0 up to 1.3.0 were im ...)
-	TODO: check
+	- nomad <not-affected> (In Debian Nomad doesn't bundle go-getter, but build depends a shared deb)
 CVE-2022-30323 (HashiCorp go-getter through 2.0.2 does not safely perform downloads (i ...)
 	- golang-github-hashicorp-go-getter <unfixed> (bug #1011741)
 	NOTE: https://discuss.hashicorp.com/t/hcsec-2022-13-multiple-vulnerabilities-in-go-getter-library/39930



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e5b1098f899a63107eb76094df01d40e74ed1796

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e5b1098f899a63107eb76094df01d40e74ed1796
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220620/282f52d3/attachment.htm>

More information about the debian-security-tracker-commits mailing list