[Git][security-tracker-team/security-tracker][master] 2 commits: Add "introduced in" URL for CVE-2022-39264/nheko

Chris Lamb (@lamby) lamby at debian.org
Mon Mar 20 09:54:47 GMT 2023 


Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d048824c by Chris Lamb at 2023-03-20T09:53:09+00:00
Add "introduced in" URL for CVE-2022-39264/nheko

- - - - -
1049ed24 by Chris Lamb at 2023-03-20T09:54:12+00:00
Triage CVE-2022-39264 in nheko for buster LTS.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -47420,8 +47420,10 @@ CVE-2022-39265 (MyBB is a free and open source forum software. The _Mail Setting
 	NOT-FOR-US: MyBB
 CVE-2022-39264 (nheko is a desktop client for the Matrix communication application. Al ...)
 	- nheko 0.10.2-1
+	[buster] - nheko <not-affected> (Vulnerable code not present)
 	NOTE: https://github.com/Nheko-Reborn/nheko/security/advisories/GHSA-8jcp-8jq4-5mm7
 	NOTE: https://github.com/Nheko-Reborn/nheko/commit/67bee15a389f9b8a9f6c3a340558d1e2319e7199 (v0.10.2)
+	NOTE: Possibly introduced in 0.8.0 via https://github.com/Nheko-Reborn/nheko/commit/7b46aa2a6e4fdb71632128a94b6645613631d8d4
 CVE-2022-39263 (`@next-auth/upstash-redis-adapter` is the Upstash Redis adapter for Ne ...)
 	NOT-FOR-US: next-auth/upstash-redis-adapter
 CVE-2022-39262 (GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Fre ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/6e192076864a3273a579a9ce63b221f0ea0d2443...1049ed24df73e5823cb761b063ec1f73ca0039de

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/6e192076864a3273a579a9ce63b221f0ea0d2443...1049ed24df73e5823cb761b063ec1f73ca0039de
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230320/c142a453/attachment.htm>

More information about the debian-security-tracker-commits mailing list