[Git][security-tracker-team/security-tracker][master] Revert "CVE-2022-1350/ghostscript is already fixed in >= bookworm"
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Mar 25 04:44:17 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
fbe79439 by Salvatore Bonaccorso at 2025-03-25T05:43:43+01:00
Revert "CVE-2022-1350/ghostscript is already fixed in >= bookworm"
This reverts commit aba5c4858c7458152ef6c889740a181b2682af4c.
These are not the fixes for the upstream bug #705156 (though this is not
public, but reference other bugzilla entries).
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -249096,14 +249096,12 @@ CVE-2022-29264 (An issue was discovered in coreboot 4.13 through 4.16. On APs, a
CVE-2022-28719 (Missing authentication for critical function in AssetView prior to Ver ...)
NOT-FOR-US: AssetView
CVE-2022-1350 (A vulnerability classified as problematic was found in GhostPCL 9.55.0 ...)
- - ghostscript 10.0.0~dfsg-3 (unimportant)
+ - ghostscript <unfixed> (unimportant)
NOTE: https://vuldb.com/?id.197290
NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=705156
NOTE: https://bugs.ghostscript.com/attachment.cgi?id=22323
NOTE: Issue is in GhostPCL sourcewise shipped in src:ghostscript
NOTE: Upstream report is as per 2022-04-15 not yet public
- NOTE: Fixed by: https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=341d69825f9af14ff95f820dcdd9ae2e9c4420a0 (ghostpdl-9.57.0-test-base-1)
- NOTE: Regression fix: https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=479649281467ca84a220873d51c7a461b5a78104 (ghostpdl-9.57.0-test-base-1)
CVE-2022-1349 (The WPQA Builder Plugin WordPress plugin before 5.2, used as a compani ...)
NOT-FOR-US: WordPress plugin
CVE-2022-1348 (A vulnerability was found in logrotate in how the state file is create ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fbe79439e26ee35f55423e5ffef40314ba79aac0
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fbe79439e26ee35f55423e5ffef40314ba79aac0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250325/2690746a/attachment.htm>
More information about the debian-security-tracker-commits
mailing list