Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
8c12148c by Moritz Muehlenhoff at 2022-10-11T22:58:55+02:00
new libreoffice issue
- - - - -
2 changed files:
- data/CVE/list
- data/dsa-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -6491,10 +6491,12 @@ CVE-2022-3142 (The NEX-Forms WordPress plugin before
7.9.7 does not properly san
NOT-FOR-US: WordPress plugin
CVE-2022-3141 (The Translate Multilingual sites WordPress plugin before 2.3.3
is vuln ...)
NOT-FOR-US: WordPress plugin
-CVE-2022-3140
+CVE-2022-3140 [libreoffice: Macro URL arbitrary script execution]
RESERVED
+ - libreoffice 1:7.4.1~rc2-3
+ NOTE:
https://www.libreoffice.org/about-us/security/advisories/cve-2022-3140
CVE-2022-3139
- RESERVED
+ RESERVED
CVE-2022-3138 (Cross-site Scripting (XSS) - Generic in GitHub repository
jgraph/drawi ...)
NOT-FOR-US: jgraph/drawio
CVE-2022-3137 (The Taskbuilder WordPress plugin before 1.0.8 does not validate
and sa ...)
=====================================
data/dsa-needed.txt
=====================================
@@ -20,6 +20,8 @@ frr
--
gerbv (aron)
--
+libreoffice (jmm)
+--
linux (carnil)
Wait until more issues have piled up, though try to regulary rebase for point
releases to more recent v5.10.y versions
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8c12148c007718600d46ab47376dd99c4bad3bd2
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8c12148c007718600d46ab47376dd99c4bad3bd2
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
