[Git][security-tracker-team/security-tracker][master] Update information on CVE-2022-4964
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Feb 2 22:02:43 GMT 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
e7a0fcf1 by Salvatore Bonaccorso at 2024-02-02T23:01:46+01:00
Update information on CVE-2022-4964
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1914,7 +1914,11 @@ CVE-2023-35835 (An issue was discovered in SolaX Pocket WiFi 3 through 3.001.02.
CVE-2023-31654 (Redis raft master-1b8bd86 to master-7b46079 was discovered to contain ...)
NOT-FOR-US: redisraft
CVE-2022-4964 (Ubuntu's pipewire-pulse in snap grants microphone access even when the ...)
- NOT-FOR-US: Ubuntu snap pipewire-pulse
+ - pipewire 1.0.2-1 (unimportant)
+ NOTE: https://bugs.launchpad.net/ubuntu/+source/pipewire/+bug/1995707/
+ NOTE: https://gitlab.freedesktop.org/pipewire/pipewire/-/commit/d568dcd64f64454289e1f35ed07a11749f95b04e
+ NOTE: In Debian pipewire is not built with snap support until 1.0.2-1 (including at same time the fix
+ NOTE: for CVE-2022-4964; earlier versions did not include snap feature support)
CVE-2024-0814 (Incorrect security UI in Payments in Google Chrome prior to 121.0.6167 ...)
{DSA-5607-1}
- chromium 121.0.6167.85-1
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e7a0fcf1c039907a370847eb20844b00a08d106a
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e7a0fcf1c039907a370847eb20844b00a08d106a
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240202/ee4305aa/attachment.htm>
More information about the debian-security-tracker-commits
mailing list