[Git][security-tracker-team/security-tracker][master] 4 commits: mark CVE-2022-1325 as no-dsa for Buster

Sun Sep 25 15:57:19 BST 2022


Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c02c32ab by Thorsten Alteholz at 2022-09-25T16:52:30+02:00
mark CVE-2022-1325 as no-dsa for Buster

- - - - -
4fbc37db by Thorsten Alteholz at 2022-09-25T16:54:02+02:00
mark CVE-2022-36114 and CVE-2022-36113 as no-dsa for Buster

- - - - -
b1fe2a10 by Thorsten Alteholz at 2022-09-25T16:55:50+02:00
mark CVE-2022-24728 as no-dsa for Buster

- - - - -
53735b97 by Thorsten Alteholz at 2022-09-25T16:56:49+02:00
mark CVE-2022-24729 as no-dsa for Buster

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -13430,15 +13430,19 @@ CVE-2022-36115 (An issue was discovered in Blue Prism Enterprise 6.0 through 7.0
 CVE-2022-36114 (Cargo is a package manager for the rust programming language. It was d ...)
 	- cargo <unfixed>
 	[bullseye] - cargo <no-dsa> (Minor issue)
+	[buster] - cargo <no-dsa> (Minor issue)
 	- rust-cargo <unfixed>
 	[bullseye] - rust-cargo <no-dsa> (Minor issue)
+	[buster] - rust-cargo <no-dsa> (Minor issue)
 	NOTE: https://github.com/rust-lang/cargo/security/advisories/GHSA-2hvr-h6gw-qrxp
 	NOTE: https://github.com/rust-lang/cargo/commit/d1f9553c825f6d7481453be8d58d0e7f117988a7
 CVE-2022-36113 (Cargo is a package manager for the rust programming language. After a  ...)
 	- cargo <unfixed>
 	[bullseye] - cargo <no-dsa> (Minor issue)
+	[buster] - cargo <no-dsa> (Minor issue)
 	- rust-cargo <unfixed>
 	[bullseye] - rust-cargo <no-dsa> (Minor issue)
+	[buster] - rust-cargo <no-dsa> (Minor issue)
 	NOTE: https://github.com/rust-lang/cargo/security/advisories/GHSA-rfj2-q3h3-hm5j
 	NOTE: https://github.com/rust-lang/cargo/commit/97b80919e404b0768ea31ae329c3b4da54bed05a
 CVE-2022-36112 (GLPI stands for Gestionnaire Libre de Parc Informatique and is a Free  ...)
@@ -33077,6 +33081,7 @@ CVE-2022-1326 (The Form - Contact Form WordPress plugin through 1.2.0 does not s
 CVE-2022-1325 (A flaw was found in Clmg, where with the help of a maliciously crafted ...)
 	- cimg <unfixed> (bug #1018941)
 	[bullseye] - cimg <no-dsa> (Minor issue)
+	[buster] - cimg <no-dsa> (Minor issue)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2074549
 	NOTE: https://github.com/GreycLab/CImg/commit/619cb58dd90b4e03ac68286c70ed98acbefd1c90 (v3.1.0)
 	NOTE: https://github.com/GreycLab/CImg/issues/343
@@ -45754,6 +45759,7 @@ CVE-2022-24730 (Argo CD is a declarative, GitOps continuous delivery tool for Ku
 CVE-2022-24729 (CKEditor4 is an open source what-you-see-is-what-you-get HTML editor.  ...)
 	- ckeditor 4.19.0+dfsg-1
 	[bullseye] - ckeditor <no-dsa> (Minor issue)
+	[buster] - ckeditor <no-dsa> (Minor issue)
 	- ckeditor3 <unfixed> (bug #1015217)
 	[bullseye] - ckeditor3 <no-dsa> (Minor issue)
 	[buster] - ckeditor3 <end-of-life> (No longer supported in LTS)
@@ -45762,6 +45768,7 @@ CVE-2022-24729 (CKEditor4 is an open source what-you-see-is-what-you-get HTML ed
 CVE-2022-24728 (CKEditor4 is an open source what-you-see-is-what-you-get HTML editor.  ...)
 	- ckeditor 4.19.0+dfsg-1
 	[bullseye] - ckeditor <no-dsa> (Minor issue)
+	[buster] - ckeditor <no-dsa> (Minor issue)
 	- ckeditor3 <unfixed> (bug #1015217)
 	[bullseye] - ckeditor3 <no-dsa> (Minor issue)
 	[buster] - ckeditor3 <end-of-life> (No longer supported in LTS)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/cdb9eaead2faa2f01f1067200e0e08d6c682eaa0...53735b97781f43e261687278822b33dc75e053a2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/cdb9eaead2faa2f01f1067200e0e08d6c682eaa0...53735b97781f43e261687278822b33dc75e053a2
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220925/c0d96a44/attachment-0001.htm>
