[Pkg-utopia-maintainers] Bug#1013343: dbus-broker: CVE-2022-31212
Luca Boccassi
bluca at debian.org
Wed Jun 22 19:26:57 BST 2022
Control: fixed -1 31-1
On Wed, 22 Jun 2022 11:36:32 +0200 =?UTF-8?Q?Moritz_M=C3=BChlenhoff?=
<jmm at inutil.org> wrote:
> Source: dbus-broker
> X-Debbugs-CC: team at security.debian.org
> Severity: important
> Tags: security
>
> Hi,
>
> The following vulnerability was published for dbus-broker.
>
> This was assigned CVE-2022-31212:
> https://bugzilla.redhat.com/show_bug.cgi?id=2094718
>
> If you fix the vulnerability please also make sure to include the
> CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
>
> For further information see:
>
> [0] https://security-tracker.debian.org/tracker/CVE-2022-31212
> https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31212
>
> Please adjust the affected versions in the BTS as needed.
This appears to be already fixed in unstable and testing, at least
according to this message on bugzilla that says v31 includes the fix:
https://bugzilla.redhat.com/show_bug.cgi?id=2094720#c2
Although it is unclear precisely which commit/patch fixed it?
--
Kind regards,
Luca Boccassi
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: This is a digitally signed message part
URL: <http://alioth-lists.debian.net/pipermail/pkg-utopia-maintainers/attachments/20220622/43b55ab3/attachment.sig>
More information about the Pkg-utopia-maintainers
mailing list