[Git][security-tracker-team/security-tracker][master] 2 commits: Add new chromium issues

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
46b881c5 by Salvatore Bonaccorso at 2024-05-17T00:08:45+02:00
Add new chromium issues

- - - - -
488e8ce3 by Salvatore Bonaccorso at 2024-05-17T00:09:33+02:00
Add chromium to dsa-needed list

- - - - -


2 changed files:

- data/CVE/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -41,13 +41,21 @@ CVE-2024-4960 (** UNSUPPORTED WHEN ASSIGNED ** A vulnerability classified as cri
 CVE-2024-4956 (Path Traversal in Sonatype Nexus Repository 3 allows an unauthenticate ...)
 	NOT-FOR-US: Sonatype Nexus Repository
 CVE-2024-4950 (Inappropriate implementation in Downloads in Google Chrome prior to 12 ...)
-	TODO: check
+	- chromium <unfixed>
+	[bullseye] - chromium <end-of-life> (see #1061268)
+	[buster] - chromium <end-of-life> (see DSA 5046)
 CVE-2024-4949 (Use after free in V8 in Google Chrome prior to 125.0.6422.60 allowed a ...)
-	TODO: check
+	- chromium <unfixed>
+	[bullseye] - chromium <end-of-life> (see #1061268)
+	[buster] - chromium <end-of-life> (see DSA 5046)
 CVE-2024-4948 (Use after free in Dawn in Google Chrome prior to 125.0.6422.60 allowed ...)
-	TODO: check
+	- chromium <unfixed>
+	[bullseye] - chromium <end-of-life> (see #1061268)
+	[buster] - chromium <end-of-life> (see DSA 5046)
 CVE-2024-4947 (Type Confusion in V8 in Google Chrome prior to 125.0.6422.60 allowed a ...)
-	TODO: check
+	- chromium <unfixed>
+	[bullseye] - chromium <end-of-life> (see #1061268)
+	[buster] - chromium <end-of-life> (see DSA 5046)
 CVE-2024-4946 (A vulnerability was found in SourceCodester Online Art Gallery Managem ...)
 	NOT-FOR-US: SourceCodester Online Art Gallery Management System
 CVE-2024-4945 (A vulnerability was found in SourceCodester Best Courier Management Sy ...)


=====================================
data/dsa-needed.txt
=====================================
@@ -11,6 +11,8 @@ To pick an issue, simply add your uid behind it.
 
 If needed, specify the release by adding a slash after the name of the source package.
 
+--
+chromium (dilinger)
 --
 dnsdist (jmm)
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/ccad9d02f2fd62f6b7894d00e3bc23716dff1946...488e8ce35d8fc36d2f2c3b136a9cd29f9da9f5c0

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/ccad9d02f2fd62f6b7894d00e3bc23716dff1946...488e8ce35d8fc36d2f2c3b136a9cd29f9da9f5c0
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240516/79b03bb8/attachment-0001.htm>