[Git][security-tracker-team/security-tracker][master] new rust-webbrowser issue

Thu Feb 16 16:50:38 GMT 2023


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
50a1e7d8 by Moritz Muehlenhoff at 2023-02-16T17:50:06+01:00
new rust-webbrowser issue

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3528,7 +3528,7 @@ CVE-2022-48303 (GNU Tar through 1.34 has a one-byte out-of-bounds read that resu
 	NOTE: https://savannah.gnu.org/bugs/?62387
 	NOTE: https://savannah.gnu.org/patch/?10307
 CVE-2021-46873 (WireGuard, such as WireGuard 0.5.3 on Windows, does not fully account  ...)
-	TODO: check
+	NOTE: Generic protocol issue in WireGuard
 CVE-2023-0571 (A vulnerability has been found in SourceCodester Canteen Management Sy ...)
 	NOT-FOR-US: SourceCodester Canteen Management System
 CVE-2023-0570 (A vulnerability, which was classified as critical, was found in Source ...)
@@ -20683,7 +20683,8 @@ CVE-2022-45301 (Insecure permissions in Chocolatey Ruby package v3.1.2.1 and bel
 CVE-2022-45300
 	RESERVED
 CVE-2022-45299 (An issue in the IpFile argument of rust-lang webbrowser-rs v0.8.2 allo ...)
-	TODO: check
+	- rust-webbrowser 0.8.7-1
+	NOTE: https://github.com/offalltn/CVE-2022-45299
 CVE-2022-45298
 	RESERVED
 CVE-2022-45297 (EQ v1.5.31 to v2.2.0 was discovered to contain a SQL injection vulnera ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/50a1e7d8d5e19ae874e8820469c3d3b0b0b2588e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/50a1e7d8d5e19ae874e8820469c3d3b0b0b2588e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230216/9ba8b576/attachment.htm>
