Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: b4224649 by Salvatore Bonaccorso at 2022-05-17T21:05:59+02:00 Remove no-dsa tagged entries covered by DLA-3000-1 - - - - - 27f5448f by Salvatore Bonaccorso at 2022-05-17T21:14:54+02:00 Update information on CVE-2022-1355/tiff We referenced the wrong upstream commit for CVE-2022-1355, so the isuse is not yet fixed with the 4.3.0-7 upload. Link: https://bugs.debian.org/1011160 - - - - - e9d90af5 by Salvatore Bonaccorso at 2022-05-17T21:28:20+02:00 Add new set of issues for nvidia-graphics-drivers-tesla-510 - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -4828,12 +4828,12 @@ CVE-2022-1356 RESERVED CVE-2022-1355 RESERVED - - tiff 4.3.0-7 + - tiff <unfixed> (bug #1011160) [bullseye] - tiff <no-dsa> (Minor issue) [buster] - tiff <no-dsa> (Minor issue) NOTE: https://gitlab.com/libtiff/libtiff/-/issues/400 NOTE: https://gitlab.com/libtiff/libtiff/-/merge_requests/323 - NOTE: Fixed by: https://gitlab.com/libtiff/libtiff/-/commit/9752dae8febab08879fc0159e7d387cff14eb3c3 + NOTE: Fixed by: https://gitlab.com/libtiff/libtiff/-/commit/c1ae29f9ebacd29b7c3e0c7db671af7db3584bc2 CVE-2022-1354 RESERVED - tiff 4.3.0-7 @@ -7834,8 +7834,12 @@ CVE-2022-28193 (NVIDIA Jetson Linux Driver Package contains a vulnerability in t NOT-FOR-US: NVIDIA Jetson Linux Driver Package CVE-2022-28192 RESERVED + - nvidia-graphics-drivers-tesla-510 <unfixed> (bug #1011147) + NOTE: https://nvidia.custhelp.com/app/answers/detail/a_id/5353 CVE-2022-28191 RESERVED + - nvidia-graphics-drivers-tesla-510 <unfixed> (bug #1011147) + NOTE: https://nvidia.custhelp.com/app/answers/detail/a_id/5353 CVE-2022-28190 RESERVED CVE-2022-28189 @@ -7848,14 +7852,22 @@ CVE-2022-28186 RESERVED CVE-2022-28185 RESERVED + - nvidia-graphics-drivers-tesla-510 <unfixed> (bug #1011147) + NOTE: https://nvidia.custhelp.com/app/answers/detail/a_id/5353 CVE-2022-28184 RESERVED + - nvidia-graphics-drivers-tesla-510 <unfixed> (bug #1011147) + NOTE: https://nvidia.custhelp.com/app/answers/detail/a_id/5353 CVE-2022-28183 RESERVED + - nvidia-graphics-drivers-tesla-510 <unfixed> (bug #1011147) + NOTE: https://nvidia.custhelp.com/app/answers/detail/a_id/5353 CVE-2022-28182 RESERVED CVE-2022-28181 RESERVED + - nvidia-graphics-drivers-tesla-510 <unfixed> (bug #1011147) + NOTE: https://nvidia.custhelp.com/app/answers/detail/a_id/5353 CVE-2022-28180 RESERVED CVE-2022-28179 @@ -187041,7 +187053,6 @@ CVE-2019-16792 (Waitress through version 1.3.1 allows request smuggling by sendi {DLA-3000-1} - waitress 1.4.1-1 [buster] - waitress 1.2.0~b2-2+deb10u1 - [stretch] - waitress <no-dsa> (Minor issue) [jessie] - waitress <no-dsa> (Minor issue) NOTE: https://github.com/Pylons/waitress/security/advisories/GHSA-4ppp-gpcr-7qf6 NOTE: https://github.com/Pylons/waitress/commit/575994cd42e83fd772a5f7ec98b2c56751bd3f65 @@ -187054,7 +187065,6 @@ CVE-2019-16789 (In Waitress through version 1.4.0, if a proxy server is used in {DLA-3000-1 DLA-2056-1} - waitress 1.4.1-1 (bug #947433) [buster] - waitress 1.2.0~b2-2+deb10u1 - [stretch] - waitress <no-dsa> (Minor issue) NOTE: https://github.com/Pylons/waitress/security/advisories/GHSA-m5ff-3wj3-8ph4 NOTE: https://github.com/Pylons/waitress/commit/11d9e138125ad46e951027184b13242a3c1de017 CVE-2019-16788 @@ -187063,7 +187073,6 @@ CVE-2019-16786 (Waitress through version 1.3.1 would parse the Transfer-Encoding {DLA-3000-1} - waitress 1.4.1-1 (bug #947306) [buster] - waitress 1.2.0~b2-2+deb10u1 - [stretch] - waitress <no-dsa> (Minor issue) [jessie] - waitress <no-dsa> (Minor issue) NOTE: https://github.com/Pylons/waitress/security/advisories/GHSA-g2xc-35jw-c63p NOTE: https://github.com/Pylons/waitress/commit/f11093a6b3240fc26830b6111e826128af7771c3 @@ -187071,7 +187080,6 @@ CVE-2019-16785 (Waitress through version 1.3.1 implemented a "MAY" part of the R {DLA-3000-1} - waitress 1.4.1-1 (bug #947306) [buster] - waitress 1.2.0~b2-2+deb10u1 - [stretch] - waitress <no-dsa> (Minor issue) [jessie] - waitress <no-dsa> (Minor issue) NOTE: https://github.com/Pylons/waitress/security/advisories/GHSA-pg36-wpm5-g57p NOTE: https://github.com/Pylons/waitress/commit/8eba394ad75deaf9e5cd15b78a3d16b12e6b0eba View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/bd798cf0a5fb8fe7d99ad7a3f2453ec9bc215c49...e9d90af5154bcd9227b03218beb4eb28b6aa15ef -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/bd798cf0a5fb8fe7d99ad7a3f2453ec9bc215c49...e9d90af5154bcd9227b03218beb4eb28b6aa15ef You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
