[Git][security-tracker-team/security-tracker][master] pcs, chromium DSAs

Moritz Muehlenhoff (@jmm) jmm at debian.org
Tue Sep 6 21:17:48 BST 2022 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a655ad42 by Moritz Mühlenhoff at 2022-09-06T22:17:14+02:00
pcs, chromium DSAs

- - - - -


3 changed files:

- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -34057,7 +34057,6 @@ CVE-2022-1050 (A flaw was found in the QEMU implementation of VMWare's paravirtu
 	NOTE: https://lists.nongnu.org/archive/html/qemu-devel/2022-03/msg05197.html
 CVE-2022-1049 (A flaw was found in the Pacemaker configuration tool (pcs). The pcs da ...)
 	- pcs 0.11.3-1
-	[bullseye] - pcs <no-dsa> (Minor issue)
 	[buster] - pcs <no-dsa> (Minor issue)
 	[stretch] - pcs <not-affected> (Vulnerable code introduced later, ./pcs/daemon/ not present)
 	NOTE: https://huntr.dev/bounties/7aa921fc-a568-4fd8-96f4-7cd826246aa5


=====================================
data/DSA/list
=====================================
@@ -1,3 +1,9 @@
+[06 Sep 2022] DSA-5226-1 pcs - security update
+	{CVE-2022-1049 CVE-2022-2735}
+	[bullseye] - pcs 0.10.8-1+deb11u1
+[06 Sep 2022] DSA-5225-1 chromium - security update
+	{CVE-2022-3075}
+	[bullseye] - chromium 105.0.5195.102-1~deb11u1
 [06 Sep 2022] DSA-5224-1 poppler - security update
 	{CVE-2022-27337 CVE-2022-38784}
 	[bullseye] - poppler 20.09.0-3.1+deb11u1


=====================================
data/dsa-needed.txt
=====================================
@@ -14,8 +14,6 @@ If needed, specify the release by adding a slash after the name of the source pa
 --
 asterisk (apo)
 --
-chromium
---
 connman (carnil)
 --
 freecad (aron)
@@ -33,8 +31,6 @@ netatalk
 --
 nodejs
 --
-pcs (jmm)
---
 php-horde-mime-viewer
 --
 php-horde-turba



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a655ad42fe4066ffb52b38084929ef3946a2bf18

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a655ad42fe4066ffb52b38084929ef3946a2bf18
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220906/e12e6850/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list