[Git][security-tracker-team/security-tracker][master] Mark CVE-2022-46165 as ignored

Abhijith PA (@abhijith) abhijith at debian.org
Tue Jul 11 05:33:12 BST 2023 


Abhijith PA pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1202f54b by Abhijith PA at 2023-07-11T10:01:27+05:30
Mark CVE-2022-46165 as ignored
     CVE-2021-21404 as postponed.

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -42191,6 +42191,7 @@ CVE-2022-46165 (Syncthing is an open source, continuous file synchronization pro
 	- syncthing <unfixed> (bug #1037432)
 	[bookworm] - syncthing <no-dsa> (Minor issue)
 	[bullseye] - syncthing <no-dsa> (Minor issue)
+	[buster] - syncthing <ignored> (Minor issue)
 	NOTE: https://github.com/syncthing/syncthing/security/advisories/GHSA-9rp6-23gf-4c3h
 	NOTE: https://github.com/syncthing/syncthing/commit/73c52eafb6566435dffd979c3c49562b6d5a4238 (v1.23.5)
 CVE-2022-46164 (NodeBB is an open source Node.js based forum software. Due to a plain  ...)
@@ -184242,7 +184243,7 @@ CVE-2021-21405 (Lotus is an Implementation of the Filecoin protocol written in G
 	NOT-FOR-US: Lotus
 CVE-2021-21404 (Syncthing is a continuous file synchronization program. In Syncthing b ...)
 	- syncthing 1.12.1~ds1-3 (bug #986593)
-	[buster] - syncthing <no-dsa> (Minor issue)
+	[buster] - syncthing <postponed> (Minor issue; can be fixed in next update)
 	[stretch] - syncthing <postponed> (Minor issue; can be fixed in next update)
 	NOTE: https://github.com/syncthing/syncthing/security/advisories/GHSA-x462-89pf-6r5h
 	NOTE: https://github.com/syncthing/syncthing/commit/fb4fdaf4c0a79c22cad000c42ac1394e3ccb6a97


=====================================
data/dla-needed.txt
=====================================
@@ -215,9 +215,6 @@ symfony (guilhem)
   NOTE: 20230620: Added by Front-Desk (Beuc)
   NOTE: 20230620: Follow fixes from bullseye 11.7 (2 CVEs) + 1 other postponed CVE (Beuc/front-desk)
 --
-syncthing (Abhijith PA)
-  NOTE: 20230616: Added by Front-Desk (opal)
---
 thunderbird (pochu)
   NOTE: 20230704: Added by pochu
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1202f54b06eb395094bfe308c37e79c20f129e8a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1202f54b06eb395094bfe308c37e79c20f129e8a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230711/24d0f1ff/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list