[Git][security-tracker-team/security-tracker][master] Add CVE-2022-46165/syncthing

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Jun 12 20:33:51 BST 2023


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
566603a6 by Salvatore Bonaccorso at 2023-06-12T21:33:19+02:00
Add CVE-2022-46165/syncthing

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -38702,7 +38702,9 @@ CVE-2022-46167 (Capsule is a multi-tenancy and policy-based framework for Kubern
 CVE-2022-46166 (Spring boot admins is an open source administrative user interface for ...)
 	NOT-FOR-US: Spring boot admins
 CVE-2022-46165 (Syncthing is an open source, continuous file synchronization program.  ...)
-	TODO: check
+	- syncthing <unfixed>
+	NOTE: https://github.com/syncthing/syncthing/security/advisories/GHSA-9rp6-23gf-4c3h
+	NOTE: https://github.com/syncthing/syncthing/commit/73c52eafb6566435dffd979c3c49562b6d5a4238 (v1.23.5)
 CVE-2022-46164 (NodeBB is an open source Node.js based forum software. Due to a plain  ...)
 	NOT-FOR-US: NodeBB
 CVE-2022-46163 (Travel support program is a rails app to support the travel support pr ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/566603a6eab67919c4dddd626a7ef412e6de7464

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/566603a6eab67919c4dddd626a7ef412e6de7464
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230612/ca9697e1/attachment.htm>


More information about the debian-security-tracker-commits mailing list