[Git][security-tracker-team/security-tracker][master] Fix for CVE-2022-27240/glewlwyd did actually not enter bullseye point release

Thu May 5 19:36:57 BST 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3eb299e1 by Salvatore Bonaccorso at 2022-05-05T20:35:58+02:00
Fix for CVE-2022-27240/glewlwyd did actually not enter bullseye point release

Move back to the review list.

- - - - -


2 changed files:

- data/CVE/list
- data/next-point-update.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -8416,7 +8416,7 @@ CVE-2022-1020 (The Product Table for WooCommerce (wooproducttable) WordPress plu
 	NOT-FOR-US: WordPress plugin
 CVE-2022-27240 (scheme/webauthn.c in Glewlwyd SSO server 2.x before 2.6.2 has a buffer ...)
 	- glewlwyd 2.6.1-2
-	[bullseye] - glewlwyd 2.5.2-2+deb11u3
+	[bullseye] - glewlwyd <no-dsa> (Minor issue)
 	[buster] - glewlwyd <no-dsa> (Minor issue)
 	NOTE: https://github.com/babelouest/glewlwyd/commit/4c5597c155bfbaf6491cf6b83479d241ae66940a (v2.6.2)
 CVE-2022-29869 (cifs-utils through 6.14, with verbose logging, can cause an informatio ...)


=====================================
data/next-point-update.txt
=====================================
@@ -66,3 +66,5 @@ CVE-2022-21716
 	[bullseye] - twisted 20.3.0-7+deb11u1
 CVE-2022-21712
 	[bullseye] - twisted 20.3.0-7+deb11u1
+CVE-2022-27240
+	[bullseye] - glewlwyd 2.5.2-2+deb11u3



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3eb299e195aa445e66c10644e8845e1d721072fc

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3eb299e195aa445e66c10644e8845e1d721072fc
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220505/b7b5f8ec/attachment.htm>
