[Git][security-tracker-team/security-tracker][master] Reserve DSA number for connman update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Sep 17 16:34:13 BST 2022



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9fc43581 by Salvatore Bonaccorso at 2022-09-17T17:33:43+02:00
Reserve DSA number for connman update

- - - - -


3 changed files:

- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -50272,7 +50272,6 @@ CVE-2022-23099 (OX App Suite through 7.10.6 allows XSS by forcing block-wise rea
 CVE-2022-23098 (An issue was discovered in the DNS proxy in Connman through 1.40. The  ...)
 	{DLA-2915-1}
 	- connman 1.36-2.4 (bug #1004935)
-	[bullseye] - connman <no-dsa> (Minor issue)
 	[buster] - connman <no-dsa> (Minor issue)
 	NOTE: https://www.openwall.com/lists/oss-security/2022/01/25/1
 	NOTE: https://lore.kernel.org/connman/20220125090026.5108-1-wagi@monom.org/
@@ -50281,7 +50280,6 @@ CVE-2022-23098 (An issue was discovered in the DNS proxy in Connman through 1.40
 CVE-2022-23097 (An issue was discovered in the DNS proxy in Connman through 1.40. forw ...)
 	{DLA-2915-1}
 	- connman 1.36-2.4 (bug #1004935)
-	[bullseye] - connman <no-dsa> (Minor issue)
 	[buster] - connman <no-dsa> (Minor issue)
 	NOTE: https://www.openwall.com/lists/oss-security/2022/01/25/1
 	NOTE: https://lore.kernel.org/connman/20220125090026.5108-1-wagi@monom.org/
@@ -50289,7 +50287,6 @@ CVE-2022-23097 (An issue was discovered in the DNS proxy in Connman through 1.40
 CVE-2022-23096 (An issue was discovered in the DNS proxy in Connman through 1.40. The  ...)
 	{DLA-2915-1}
 	- connman 1.36-2.4 (bug #1004935)
-	[bullseye] - connman <no-dsa> (Minor issue)
 	[buster] - connman <no-dsa> (Minor issue)
 	NOTE: https://www.openwall.com/lists/oss-security/2022/01/25/1
 	NOTE: https://lore.kernel.org/connman/20220125090026.5108-1-wagi@monom.org/


=====================================
data/DSA/list
=====================================
@@ -1,3 +1,6 @@
+[17 Sep 2022] DSA-5231-1 connman - security update
+	{CVE-2022-23096 CVE-2022-23097 CVE-2022-23098 CVE-2022-32292 CVE-2022-32293}
+	[bullseye] - connman 1.36-2.2+deb11u1
 [15 Sep 2022] DSA-5230-1 chromium - security update
 	{CVE-2022-3195 CVE-2022-3196 CVE-2022-3197 CVE-2022-3198 CVE-2022-3199 CVE-2022-3200 CVE-2022-3201}
 	[bullseye] - chromium 105.0.5195.125-1~deb11u1


=====================================
data/dsa-needed.txt
=====================================
@@ -16,8 +16,6 @@ asterisk (apo)
 --
 commons-configuration
 --
-connman (carnil)
---
 e17 (jmm)
   Maintainer is proposing changes for review
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9fc4358106250f5516fe1af7b92a476aad1e55cc

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9fc4358106250f5516fe1af7b92a476aad1e55cc
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220917/31d317d4/attachment-0001.htm>


More information about the debian-security-tracker-commits mailing list