Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
458d2c75 by Moritz Mühlenhoff at 2022-07-26T21:57:02+02:00
linux, openjdk-17 DSAs
- - - - -
3 changed files:
- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -28759,18 +28759,18 @@ CVE-2022-26308
RESERVED
CVE-2022-26307 (LibreOffice supports the storage of passwords for web
connections in t ...)
- libreoffice 1:7.3.3~rc1-2
- [bullseye] - libreoffice <no-dsa> (Minor issue)
- [buster] - libreoffice <no-dsa> (Minor issue)
+ [bullseye] - libreoffice <no-dsa> (Minor issue)
+ [buster] - libreoffice <no-dsa> (Minor issue)
NOTE:
https://www.libreoffice.org/about-us/security/advisories/cve-2022-26307
CVE-2022-26306 (LibreOffice supports the storage of passwords for web
connections in t ...)
- libreoffice 1:7.3.3~rc1-2
- [bullseye] - libreoffice <no-dsa> (Minor issue)
- [buster] - libreoffice <no-dsa> (Minor issue)
+ [bullseye] - libreoffice <no-dsa> (Minor issue)
+ [buster] - libreoffice <no-dsa> (Minor issue)
NOTE:
https://www.libreoffice.org/about-us/security/advisories/cve-2022-26306
CVE-2022-26305 (An Improper Certificate Validation vulnerability in
LibreOffice existe ...)
- libreoffice 1:7.3.2~rc2-1
- [bullseye] - libreoffice <no-dsa> (Minor issue)
- [buster] - libreoffice <no-dsa> (Minor issue)
+ [bullseye] - libreoffice <no-dsa> (Minor issue)
+ [buster] - libreoffice <no-dsa> (Minor issue)
NOTE:
https://www.libreoffice.org/about-us/security/advisories/cve-2022-26305
CVE-2022-26301 (TuziCMS v2.0.6 was discovered to contain a SQL injection
vulnerability ...)
NOT-FOR-US: TuziCMS
=====================================
data/DSA/list
=====================================
@@ -1,3 +1,8 @@
+[26 Jul 2022] DSA-5192-1 openjdk-17 - security update
+ [bullseye] - openjdk-17 17.0.4+8-1~deb11u1
+[26 Jul 2022] DSA-5191-1 linux - security update
+ {CVE-2021-33655 CVE-2022-2318 CVE-2022-26365 CVE-2022-33740
CVE-2022-33741 CVE-2022-33742 CVE-2022-33743 CVE-2022-33744 CVE-2022-34918}
+ [bullseye] - linux 5.10.127-2
[26 Jul 2022] DSA-5190-1 spip - security update
[buster] - spip 3.2.4-1+deb10u9
[bullseye] - spip 3.2.11-3+deb11u5
=====================================
data/dsa-needed.txt
=====================================
@@ -36,8 +36,8 @@ libpgjava (apo)
--
linux (carnil)
Wait until more issues have piled up, though try to regulary rebase for point
- releases to more recent v4.19.y versions.
---
+ releases to more recent v4.19.y and v5.10.y versions
+---
ndpi/oldstable
--
netatalk
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/458d2c7512a43ab89a6106a985e1e866639ddd06
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/458d2c7512a43ab89a6106a985e1e866639ddd06
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
