[Git][security-tracker-team/security-tracker][master] Process three CVEs for weblate

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Mar 7 08:26:16 GMT 2022 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
91c9278e by Salvatore Bonaccorso at 2022-03-07T09:25:54+01:00
Process three CVEs for weblate

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1686,7 +1686,7 @@ CVE-2022-23923
 CVE-2022-23920
 	RESERVED
 CVE-2022-23915 (The package weblate from 0 and before 4.11.1 are vulnerable to Remote  ...)
-	TODO: check
+	- weblate <itp> (bug #745661)
 CVE-2022-23812
 	RESERVED
 CVE-2022-23811
@@ -4695,7 +4695,7 @@ CVE-2022-24729
 CVE-2022-24728
 	RESERVED
 CVE-2022-24727 (Weblate is a web based localization tool with tight version control in ...)
-	TODO: check
+	- weblate <itp> (bug #745661)
 CVE-2022-24726
 	RESERVED
 CVE-2022-24725 (Shescape is a shell escape package for JavaScript. An issue in version ...)
@@ -4740,7 +4740,7 @@ CVE-2022-24712 (CodeIgniter4 is the 4.x branch of CodeIgniter, a PHP full-stack
 CVE-2022-24711 (CodeIgniter4 is the 4.x branch of CodeIgniter, a PHP full-stack web fr ...)
 	- codeigniter <itp> (bug #471583)
 CVE-2022-24710 (Weblate is a copyleft software web-based continuous localization syste ...)
-	TODO: check
+	- weblate <itp> (bug #745661)
 CVE-2022-24709 (@awsui/components-react is the main AWS UI package which contains Reac ...)
 	NOT-FOR-US: Node components-react
 CVE-2022-24708 (Anuko Time Tracker is an open source, web-based time tracking applicat ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/91c9278ef38b7b58f157120af3391adb6b3ef18e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/91c9278ef38b7b58f157120af3391adb6b3ef18e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220307/40121505/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list