[Git][security-tracker-team/security-tracker][master] Track two older chromium CVEs now assigned

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Jul 17 21:07:23 BST 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b021d594 by Salvatore Bonaccorso at 2024-07-17T22:06:55+02:00
Track two older chromium CVEs now assigned

- - - - -


2 changed files:

- data/CVE/list
- data/DSA/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -57,9 +57,9 @@ CVE-2024-40536 (Shenzhen Libituo Technology Co., Ltd LBT-T300-T400 v3.2 were dis
 CVE-2024-40535 (Shenzhen Libituo Technology Co., Ltd LBT-T300-T400 v3.2 was discovered ...)
 	NOT-FOR-US: Shenzhen Libituo Technology Co., Ltd LBT-T300-T400
 CVE-2024-3176 (Out of bounds write in SwiftShader in Google Chrome prior to 117.0.593 ...)
-	TODO: check
+	- chromium 117.0.5938.62-1
 CVE-2024-3175 (Insufficient data validation in Extensions in Google Chrome prior to 1 ...)
-	TODO: check
+	- chromium 120.0.6099.71-1
 CVE-2024-3174 (Inappropriate implementation in V8 in Google Chrome prior to 119.0.604 ...)
 	TODO: check
 CVE-2024-3173 (Insufficient data validation in Updater in Google Chrome prior to 120. ...)


=====================================
data/DSA/list
=====================================
@@ -577,7 +577,7 @@
 	[bullseye] - libreoffice 1:7.0.4-4+deb11u8
 	[bookworm] - libreoffice 4:7.4.7-1+deb12u1
 [09 Dec 2023] DSA-5573-1 chromium - security update
-	{CVE-2023-6508 CVE-2023-6509 CVE-2023-6510 CVE-2023-6511 CVE-2023-6512}
+	{CVE-2023-6508 CVE-2023-6509 CVE-2023-6510 CVE-2023-6511 CVE-2023-6512 CVE-2024-3175}
 	[bullseye] - chromium 120.0.6099.71-1~deb11u1
 	[bookworm] - chromium 120.0.6099.71-1~deb12u1
 [04 Dec 2023] DSA-5572-1 roundcube - security update
@@ -858,7 +858,7 @@
 	{CVE-2020-22219}
 	[bullseye] - flac 1.3.3-2+deb11u2
 [18 Sep 2023] DSA-5499-1 chromium - security update
-	{CVE-2023-4900 CVE-2023-4901 CVE-2023-4902 CVE-2023-4903 CVE-2023-4904 CVE-2023-4905 CVE-2023-4906 CVE-2023-4907 CVE-2023-4908 CVE-2023-4909}
+	{CVE-2023-4900 CVE-2023-4901 CVE-2023-4902 CVE-2023-4903 CVE-2023-4904 CVE-2023-4905 CVE-2023-4906 CVE-2023-4907 CVE-2023-4908 CVE-2023-4909 CVE-2024-3176}
 	[bullseye] - chromium 117.0.5938.62-1~deb11u1
 	[bookworm] - chromium 117.0.5938.62-1~deb12u1
 [13 Sep 2023] DSA-5497-2 libwebp - security update



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b021d5945202f8da1a63ba783f77a5e2bc33d96f

-- 
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b021d5945202f8da1a63ba783f77a5e2bc33d96f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240717/d72357b0/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list