[Git][security-tracker-team/security-tracker][master] Try to clarify unimportant status for CVE-2022-29181
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed May 25 22:44:24 BST 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ab8f18ba by Salvatore Bonaccorso at 2022-05-25T23:43:54+02:00
Try to clarify unimportant status for CVE-2022-29181
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -6793,6 +6793,8 @@ CVE-2022-29181 (Nokogiri is an open source XML and HTML library for Ruby. Nokogi
- ruby-nokogiri <unfixed> (unimportant)
NOTE: https://github.com/sparklemotion/nokogiri/security/advisories/GHSA-xh29-r2w5-wx8m
NOTE: https://github.com/sparklemotion/nokogiri/commit/83cc451c3f29df397caa890afc3b714eae6ab8f7 (v1.13.6)
+ NOTE: Binary package do not contain the Java extension, as the package is built with
+ NOTE: export DH_RUBY_GEM_INSTALL_EXCLUDE = ext/java/*
CVE-2022-29180 (A vulnerability in which attackers could forge HTTP requests to manipu ...)
NOT-FOR-US: charmbracelet/charm
CVE-2022-29179 (Cilium is open source software for providing and securing network conn ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ab8f18bab1e749921ba2a4d3a28f26e017edf283
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ab8f18bab1e749921ba2a4d3a28f26e017edf283
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220525/d4047f0b/attachment.htm>
More information about the debian-security-tracker-commits
mailing list