[Git][security-tracker-team/security-tracker][master] Add CVE-2022-344{3,4}/chromium

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Nov 2 21:37:35 GMT 2022



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6c385a07 by Salvatore Bonaccorso at 2022-11-02T22:37:04+01:00
Add CVE-2022-344{3,4}/chromium

- - - - -


2 changed files:

- data/CVE/list
- data/DSA/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -6804,9 +6804,13 @@ CVE-2022-42733
 CVE-2022-42732
 	RESERVED
 CVE-2022-3444 (Insufficient data validation in File System API in Google Chrome prior ...)
-	TODO: check
+	- chromium 106.0.5249.61-1
+	[buster] - chromium <end-of-life> (see DSA 5046)
+	NOTE: https://chromereleases.googleblog.com/2022/09/stable-channel-update-for-desktop_27.html
 CVE-2022-3443 (Insufficient data validation in File System API in Google Chrome prior ...)
-	TODO: check
+	- chromium 106.0.5249.61-1
+	[buster] - chromium <end-of-life> (see DSA 5046)
+	NOTE: https://chromereleases.googleblog.com/2022/09/stable-channel-update-for-desktop_27.html
 CVE-2022-3442 (A vulnerability was found in Crealogix EBICS 7.0. It has been rated as ...)
 	NOT-FOR-US: Crealogix EBICS
 CVE-2022-3441 (The Rock Convert WordPress plugin before 2.11.0 does not sanitise and  ...)


=====================================
data/DSA/list
=====================================
@@ -75,7 +75,7 @@
 	{CVE-2022-3370 CVE-2022-3373}
 	[bullseye] - chromium 106.0.5249.91-1~deb11u1
 [28 Sep 2022] DSA-5244-1 chromium - security update
-	{CVE-2022-3201 CVE-2022-3304 CVE-2022-3305 CVE-2022-3306 CVE-2022-3307 CVE-2022-3308 CVE-2022-3309 CVE-2022-3310 CVE-2022-3311 CVE-2022-3312 CVE-2022-3313 CVE-2022-3314 CVE-2022-3315 CVE-2022-3316 CVE-2022-3317 CVE-2022-3318}
+	{CVE-2022-3201 CVE-2022-3304 CVE-2022-3305 CVE-2022-3306 CVE-2022-3307 CVE-2022-3308 CVE-2022-3309 CVE-2022-3310 CVE-2022-3311 CVE-2022-3312 CVE-2022-3313 CVE-2022-3314 CVE-2022-3315 CVE-2022-3316 CVE-2022-3317 CVE-2022-3318 CVE-2022-3443 CVE-2022-3444}
 	[bullseye] - chromium 106.0.5249.61-1~deb11u1
 [28 Sep 2022] DSA-5243-1 lighttpd - security update
 	{CVE-2022-37797 CVE-2022-41556}



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6c385a07b44db6c5f05f8e9699d5a4e4777e2136

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6c385a07b44db6c5f05f8e9699d5a4e4777e2136
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221102/1236cc9c/attachment.htm>


More information about the debian-security-tracker-commits mailing list