[Git][security-tracker-team/security-tracker][master] CVE-2022-23649: Drop reference to upstrema tag which does not seem correct

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Jan 10 08:51:15 GMT 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c59aa5ca by Salvatore Bonaccorso at 2026-01-10T09:49:59+01:00
CVE-2022-23649: Drop reference to upstrema tag which does not seem correct

The version fixed was earlier, was not tagged and maybe was before
upstream properly used tags or another problem. But At least there would
be as well earlier tags before 2.0.0-rc.1. So drop it for now completely
as the issue is fixed beofre the initial upload to the archive.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -369047,7 +369047,7 @@ CVE-2022-23650 (Netmaker is a platform for creating and managing virtual overlay
 CVE-2022-23649 (Cosign provides container signing, verification, and storage in an OCI ...)
 	- cosign <not-affected> (Fixed before initial upload to archive)
 	NOTE: https://github.com/sigstore/cosign/security/advisories/GHSA-ccxc-vr6p-4858
-	NOTE: Fixed by: https://github.com/sigstore/cosign/commit/96d410a6580e4e81d24d112a0855c70ca3fb5b49 (2.0.0-rc.1)
+	NOTE: Fixed by: https://github.com/sigstore/cosign/commit/96d410a6580e4e81d24d112a0855c70ca3fb5b49
 CVE-2022-23648 (containerd is a container runtime available as a daemon for Linux and  ...)
 	{DSA-5091-1}
 	- containerd 1.6.1~ds1-1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c59aa5ca9671de377bdb3247c0f0a0eeca23c990

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c59aa5ca9671de377bdb3247c0f0a0eeca23c990
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260110/8bd4d054/attachment.htm>

More information about the debian-security-tracker-commits mailing list