[Git][security-tracker-team/security-tracker][master] Track fixed version for three redmine CVEs fixed via unstable
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Jan 25 05:54:40 GMT 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a27adda2 by Salvatore Bonaccorso at 2023-01-25T06:53:58+01:00
Track fixed version for three redmine CVEs fixed via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -19269,7 +19269,7 @@ CVE-2022-44638 (In libpixman in Pixman before 0.42.2, there is an out-of-bounds
NOTE: https://gitlab.freedesktop.org/pixman/pixman/-/issues/63
NOTE: https://bugs.chromium.org/p/project-zero/issues/detail?id=2345
CVE-2022-44637 (Redmine before 4.2.9 and 5.0.x before 5.0.4 allows persistent XSS in i ...)
- - redmine <unfixed> (bug #1026048)
+ - redmine 5.0.4-1 (bug #1026048)
NOTE: https://www.redmine.org/projects/redmine/wiki/Security_Advisories
CVE-2022-44636 (The Samsung TV (2021 and 2022 model) smart remote control allows attac ...)
NOT-FOR-US: Samsung
@@ -20792,10 +20792,10 @@ CVE-2022-44032 (An issue was discovered in the Linux kernel through 6.0.6. drive
NOTE: https://lore.kernel.org/lkml/20220915020834.GA110086@ubuntu/
NOTE: https://lore.kernel.org/lkml/20220919040701.GA302806@ubuntu/
CVE-2022-44031 (Redmine before 4.2.9 and 5.0.x before 5.0.4 allows persistent XSS in i ...)
- - redmine <unfixed> (bug #1026048)
+ - redmine 5.0.4-1 (bug #1026048)
NOTE: https://www.redmine.org/projects/redmine/wiki/Security_Advisories
CVE-2022-44030 (Redmine 5.x before 5.0.4 allows downloading of file attachments of any ...)
- - redmine <unfixed> (bug #1026048)
+ - redmine 5.0.4-1 (bug #1026048)
NOTE: https://www.redmine.org/projects/redmine/wiki/Security_Advisories
NOTE: https://github.com/redmine/redmine/commit/c02e3bfaec5fb45bd02d840b2306a875cc4f7f88
NOTE: https://github.com/redmine/redmine/commit/eea816ae0825a3d794e650d11a3909ace772152b
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a27adda245f2558c32681ac728deddd8ca93b98d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a27adda245f2558c32681ac728deddd8ca93b98d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230125/1030c6e4/attachment.htm>
More information about the debian-security-tracker-commits
mailing list