[Git][security-tracker-team/security-tracker][master] Update tracking for CVE-2022-2078 (and rejected CVE-2022-1972)

Wed Sep 14 21:26:19 BST 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
278a5456 by Salvatore Bonaccorso at 2022-09-14T22:25:33+02:00
Update tracking for CVE-2022-2078 (and rejected CVE-2022-1972)

- - - - -


2 changed files:

- data/CVE/list
- data/DSA/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -19261,9 +19261,10 @@ CVE-2022-2079 (Cross-site Scripting (XSS) - Stored in GitHub repository nocodb/n
 	NOT-FOR-US: nocodb
 CVE-2022-2078 (A vulnerability was found in the Linux kernel's nft_set_desc_concat_pa ...)
 	- linux 5.18.2-1
-	[bullseye] - linux 5.10.120-1
 	[buster] - linux <not-affected> (Vulnerable code not present)
 	[stretch] - linux <not-affected> (Vulnerable code not present)
+	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2096178
+	NOTE: https://www.openwall.com/lists/oss-security/2022/06/02/1
 	NOTE: https://git.kernel.org/linus/fecf31ee395b0295f2d7260aa29946b7605f7c85 (5.19-rc1)
 CVE-2022-33207
 	RESERVED
@@ -21933,12 +21934,6 @@ CVE-2022-1973 (A use-after-free flaw was found in the Linux kernel in log_replay
 	NOTE: https://git.kernel.org/linus/f26967b9f7a830e228bb13fb41bd516ddd9d789d (5.19-rc1)
 CVE-2022-1972
 	REJECTED
-	{DSA-5161-1}
-	- linux 5.18.2-1
-	[buster] - linux <not-affected> (Vulnerable code not present)
-	[stretch] - linux <not-affected> (Vulnerable code not present)
-	NOTE: https://www.openwall.com/lists/oss-security/2022/06/02/1
-	NOTE: https://git.kernel.org/linus/fecf31ee395b0295f2d7260aa29946b7605f7c85
 CVE-2022-32204
 	RESERVED
 CVE-2022-32203


=====================================
data/DSA/list
=====================================
@@ -221,7 +221,7 @@
 	{CVE-2022-24769 CVE-2022-31030}
 	[bullseye] - containerd 1.4.13~ds1-1~deb11u2
 [11 Jun 2022] DSA-5161-1 linux - security update
-	{CVE-2022-0494 CVE-2022-0854 CVE-2022-1012 CVE-2022-1729 CVE-2022-1786 CVE-2022-1789 CVE-2022-1852 CVE-2022-32250 CVE-2022-1972 CVE-2022-1974 CVE-2022-1975 CVE-2022-21499 CVE-2022-28893}
+	{CVE-2022-0494 CVE-2022-0854 CVE-2022-1012 CVE-2022-1729 CVE-2022-1786 CVE-2022-1789 CVE-2022-1852 CVE-2022-32250 CVE-2022-1974 CVE-2022-1975 CVE-2022-2078 CVE-2022-21499 CVE-2022-28893}
 	[bullseye] - linux 5.10.120-1
 [10 Jun 2022] DSA-5160-1 ntfs-3g - security update
 	{CVE-2021-46790 CVE-2022-30783 CVE-2022-30784 CVE-2022-30785 CVE-2022-30786 CVE-2022-30787 CVE-2022-30788 CVE-2022-30789}



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/278a54568954d5c1c612f9558614cada02e9a7d2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/278a54568954d5c1c612f9558614cada02e9a7d2
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220914/4b2e2fba/attachment.htm>
