[Git][security-tracker-team/security-tracker][master] chromium DSA
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Sun Oct 2 18:50:51 BST 2022
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
79f04fb8 by Moritz Mühlenhoff at 2022-10-02T19:49:59+02:00
chromium DSA
- - - - -
2 changed files:
- data/CVE/list
- data/DSA/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -7,12 +7,12 @@ CVE-2022-42006
CVE-2022-42005
RESERVED
CVE-2022-42004 (In FasterXML jackson-databind before 2.13.4, resource exhaustion can o ...)
- - jackson-databind <unfixed>
+ - jackson-databind <unfixed>
NOTE: https://github.com/FasterXML/jackson-databind/issues/3582
NOTE: https://github.com/FasterXML/jackson-databind/commit/063183589218fec19a9293ed2f17ec53ea80ba88 (jackson-databind-2.13.4)
NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=50490
CVE-2022-42003 (In FasterXML jackson-databind before 2.14.0-rc1, resource exhaustion c ...)
- - jackson-databind <unfixed>
+ - jackson-databind <unfixed>
NOTE: https://github.com/FasterXML/jackson-databind/issues/3590
NOTE: https://github.com/FasterXML/jackson-databind/commit/d78d00ee7b5245b93103fef3187f70543d67ca33 (jackson-databind-2.14.0-rc1)
NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=51020
=====================================
data/DSA/list
=====================================
@@ -1,3 +1,6 @@
+[02 Oct 2022] DSA-5245-1 chromium - security update
+ {CVE-2022-3370 CVE-2022-3373}
+ [bullseye] - chromium 106.0.5249.91-1~deb11u1
[28 Sep 2022] DSA-5244-1 chromium - security update
{CVE-2022-3201 CVE-2022-3304 CVE-2022-3305 CVE-2022-3306 CVE-2022-3307 CVE-2022-3308 CVE-2022-3309 CVE-2022-3310 CVE-2022-3311 CVE-2022-3312 CVE-2022-3313 CVE-2022-3314 CVE-2022-3315 CVE-2022-3316 CVE-2022-3317 CVE-2022-3318}
[bullseye] - chromium 106.0.5249.61-1~deb11u1
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/79f04fb844419af73b2b1007fc14bb36bfadf0ee
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/79f04fb844419af73b2b1007fc14bb36bfadf0ee
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221002/f41439ff/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list