[Git][security-tracker-team/security-tracker][master] buster/bullseye triage
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Mon Mar 28 16:30:46 BST 2022
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
f1743a9b by Moritz Muehlenhoff at 2022-03-28T17:30:31+02:00
buster/bullseye triage
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5315,6 +5315,8 @@ CVE-2022-0760 (The Simple Link Directory WordPress plugin before 7.7.2 does not
NOT-FOR-US: WordPress plugin
CVE-2022-0759 (A flaw was found in all versions of kubeclient up to (but not includin ...)
- ruby-kubeclient <unfixed>
+ [bullseye] - ruby-kubeclient <no-dsa> (Minor issue)
+ [buster] - ruby-kubeclient <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2058404
NOTE: https://github.com/ManageIQ/kubeclient/issues/554
NOTE: https://github.com/ManageIQ/kubeclient/pull/556
@@ -15428,12 +15430,11 @@ CVE-2022-0176 (The PowerPack Lite for Beaver Builder WordPress plugin before 1.2
NOT-FOR-US: WordPress plugin
CVE-2022-0175 [memory initialization issue in vrend_resource_alloc_buffer() can lead to info leak]
RESERVED
- - virglrenderer <unfixed>
+ - virglrenderer <not-affected> (Introduced in 0.9.0 with refactor)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2039003
NOTE: https://gitlab.freedesktop.org/virgl/virglrenderer/-/merge_requests/654
NOTE: Code refactored in https://gitlab.freedesktop.org/virgl/virglrenderer/-/commit/7899e057327848300b18d8f03aa3789e00ed0221 (0.9.0)
NOTE: Fixed by: https://gitlab.freedesktop.org/virgl/virglrenderer/-/commit/b05bb61f454eeb8a85164c8a31510aeb9d79129c
- TODO: check if issue is present before refactoring in 0.9.0
CVE-2022-0174 (dolibarr is vulnerable to Business Logic Errors ...)
- dolibarr <removed>
CVE-2022-0173 (radare2 is vulnerable to Out-of-bounds Read ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f1743a9be596b84ad45253dbb0c1cf92aae6e07c
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f1743a9be596b84ad45253dbb0c1cf92aae6e07c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220328/0838184d/attachment.htm>
More information about the debian-security-tracker-commits
mailing list