Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e5b1098f by Moritz Muehlenhoff at 2022-06-20T13:46:11+02:00
xpdf n/a
nomad n/a
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -8708,7 +8708,7 @@ CVE-2022-30777 (Parallels H-Sphere 3.6.1713 allows XSS
via the index_en.php from
CVE-2022-30776 (atmail 6.5.0 allows XSS via the index.php/admin/index/ error
parameter ...)
- atmailopen <removed>
CVE-2022-30775 (xpdf 4.04 allocates excessive memory when presented with
crafted input ...)
- TODO: check
+ - xpdf <not-affected> (Debian uses poppler, which is not affected)
CVE-2022-30774
RESERVED
CVE-2022-30773
@@ -9926,7 +9926,7 @@ CVE-2022-30326 (An issue was found on TRENDnet TEW-831DR
1.0 601.130.1.1356 devi
CVE-2022-30325 (An issue was found on TRENDnet TEW-831DR 1.0 601.130.1.1356
devices. T ...)
NOT-FOR-US: TRENDnet
CVE-2022-30324 (HashiCorp Nomad and Nomad Enterprise version 0.2.0 up to 1.3.0
were im ...)
- TODO: check
+ - nomad <not-affected> (In Debian Nomad doesn't bundle go-getter, but
build depends a shared deb)
CVE-2022-30323 (HashiCorp go-getter through 2.0.2 does not safely perform
downloads (i ...)
- golang-github-hashicorp-go-getter <unfixed> (bug #1011741)
NOTE:
https://discuss.hashicorp.com/t/hcsec-2022-13-multiple-vulnerabilities-in-go-getter-library/39930
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e5b1098f899a63107eb76094df01d40e74ed1796
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e5b1098f899a63107eb76094df01d40e74ed1796
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
