[Git][security-tracker-team/security-tracker][master] "new" chromium issue

Moritz Muehlenhoff (@jmm) jmm at debian.org
Fri Aug 18 13:08:51 BST 2023



Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
197436e1 by Moritz Muehlenhoff at 2023-08-18T14:08:26+02:00
"new" chromium issue

- - - - -


2 changed files:

- data/CVE/list
- data/DSA/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2030,7 +2030,8 @@ CVE-2023-33373 (Connected IO v2.1.0 and prior keeps passwords and credentials in
 CVE-2023-33372 (Connected IO v2.1.0 and prior uses a hard-coded username/password pair ...)
 	NOT-FOR-US: Connected IO
 CVE-2022-4955 (Inappropriate implementation in DevTools in Google Chrome prior to 108 ...)
-	TODO: check
+	- chromium 108.0.5359.71-1
+	[buster] - chromium <end-of-life> (see DSA 5046)
 CVE-2023-4142 (The WP Ultimate CSV Importer plugin for WordPress is vulnerable to Rem ...)
 	NOT-FOR-US: WP Ultimate CSV Importer plugin for WordPress
 CVE-2023-4141 (The WP Ultimate CSV Importer plugin for WordPress is vulnerable to Rem ...)


=====================================
data/DSA/list
=====================================
@@ -598,7 +598,7 @@
 	{CVE-2021-34055 CVE-2022-41751}
 	[bullseye] - jhead 1:3.04-6+deb11u1
 [03 Dec 2022] DSA-5293-1 chromium - security update
-	{CVE-2022-4174 CVE-2022-4175 CVE-2022-4176 CVE-2022-4177 CVE-2022-4178 CVE-2022-4179 CVE-2022-4180 CVE-2022-4181 CVE-2022-4182 CVE-2022-4183 CVE-2022-4184 CVE-2022-4185 CVE-2022-4186 CVE-2022-4187 CVE-2022-4188 CVE-2022-4189 CVE-2022-4190 CVE-2022-4191 CVE-2022-4192 CVE-2022-4193 CVE-2022-4194 CVE-2022-4195 CVE-2022-4906 CVE-2022-4907}
+	{CVE-2022-4174 CVE-2022-4175 CVE-2022-4176 CVE-2022-4177 CVE-2022-4178 CVE-2022-4179 CVE-2022-4180 CVE-2022-4181 CVE-2022-4182 CVE-2022-4183 CVE-2022-4184 CVE-2022-4185 CVE-2022-4186 CVE-2022-4187 CVE-2022-4188 CVE-2022-4189 CVE-2022-4190 CVE-2022-4191 CVE-2022-4192 CVE-2022-4193 CVE-2022-4194 CVE-2022-4195 CVE-2022-4906 CVE-2022-4907 CVE-2022-4955}
 	[bullseye] - chromium 108.0.5359.71-2~deb11u1
 [01 Dec 2022] DSA-5292-1 snapd - security update
 	{CVE-2022-3328}



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/197436e19b47e0395f26b07a4e08171ad4e7c8cb

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/197436e19b47e0395f26b07a4e08171ad4e7c8cb
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230818/fb78bf6e/attachment-0001.htm>


More information about the debian-security-tracker-commits mailing list