[Git][security-tracker-team/security-tracker][master] Update status for two 7zip issues

Mon Apr 21 14:45:48 BST 2025


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ee3a683c by Salvatore Bonaccorso at 2025-04-21T15:45:14+02:00
Update status for two 7zip issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -206483,17 +206483,19 @@ CVE-2022-47114
 CVE-2022-47113
 	RESERVED
 CVE-2022-47112 (7-Zip 22.01 does not report an error for certain invalid xz files, inv ...)
-	- 7zip <unfixed>
-	- p7zip 16.02+transitional.1
+	- 7zip <unfixed> (unimportant)
+	- p7zip 16.02+transitional.1 (unimportant)
 	NOTE: Since p7zip/16.02+transitional.1 src:p7zip is only a empty source package
 	NOTE: depending on 7zip. Mark this version as fixed version.
 	NOTE: https://github.com/boofish/semantic-bugs/
+	NOTE: Negligible security impact
 CVE-2022-47111 (7-Zip 22.01 does not report an error for certain invalid xz files, inv ...)
-	- 7zip <unfixed>
-	- p7zip 16.02+transitional.1
+	- 7zip <unfixed> (unimportant)
+	- p7zip 16.02+transitional.1 (unimportant)
 	NOTE: Since p7zip/16.02+transitional.1 src:p7zip is only a empty source package
 	NOTE: depending on 7zip. Mark this version as fixed version.
 	NOTE: https://github.com/boofish/semantic-bugs/
+	NOTE: Negligible security impact
 CVE-2022-47110
 	RESERVED
 CVE-2022-47109



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ee3a683c5f12bf6d32053f9dc011132916a8a2f9

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ee3a683c5f12bf6d32053f9dc011132916a8a2f9
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250421/42b47834/attachment.htm>
