[Git][security-tracker-team/security-tracker][master] Mark CVE-2022-1882/linux as unimportant

Mon Sep 5 14:09:45 BST 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
cdccbfc1 by Salvatore Bonaccorso at 2022-09-05T15:09:30+02:00
Mark CVE-2022-1882/linux as unimportant

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -21564,13 +21564,14 @@ CVE-2022-1884
 CVE-2022-1883 (SQL Injection in GitHub repository camptocamp/terraboard prior to 2.2. ...)
 	NOT-FOR-US: camptocamp/terraboard
 CVE-2022-1882 (A use-after-free flaw was found in the Linux kernel’s pipes func ...)
-	- linux 5.18.16-1
+	- linux 5.18.16-1 (unimportant)
 	[bullseye] - linux 5.10.136-1
 	[buster] - linux <not-affected> (Vulnerable code not present)
 	[stretch] - linux <not-affected> (Vulnerable code not present)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2089701
 	NOTE: https://lore.kernel.org/lkml/20220507115605.96775-1-tcs.kernel@gmail.com/T/
 	NOTE: https://ssd-disclosure.com/ssd-advisory-linux-config_watch_queue-lpe/
+	NOTE: CONFIG_WATCH_QUEUE is not enabled in Debian builds
 CVE-2022-27176 (Incomplete filtering of special elements vulnerability exists in RevoW ...)
 	NOT-FOR-US: RevoWorks
 CVE-2022-1881 (In affected versions of Octopus Server an Insecure Direct Object Refer ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cdccbfc19f5336b16a3e631f8291f450456be1bf

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cdccbfc19f5336b16a3e631f8291f450456be1bf
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220905/0ec19274/attachment.htm>
