Luca Boccassi pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
34034ef8 by Luca Boccassi at 2022-12-22T11:26:17+01:00
CVE-2022-4415: fix affected version, note on prep commit
The sysctl change was introduced in 246, not 247.
The prep commit is needed for the commit on main, but not the one on the v247
stable branch.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3936,10 +3936,10 @@ CVE-2022-4415
- systemd <unfixed> (bug #1026831)
[bullseye] - systemd <no-dsa> (Minor issue; can be fixed via point
release)
[buster] - systemd <not-affected> (Vulnerable code introduced later)
- NOTE: Preparation:
https://github.com/systemd/systemd/commit/510a146634f3e095b34e2a26023b1b1f99dcb8c0
+ NOTE: Preparation (main branch commit only):
https://github.com/systemd/systemd/commit/510a146634f3e095b34e2a26023b1b1f99dcb8c0
NOTE: Fixed by:
https://github.com/systemd/systemd/commit/3e4d0f6cf99f8677edd6a237382a65bfe758de03
NOTE: Fixed by:
https://github.com/systemd/systemd-stable/commit/bb47600aeb38c68c857fbf0ee5f66c3144dd81ce
(v247.13)
- NOTE: Affects only v247 and newer, and only if building with libacl
support
+ NOTE: Affects only v246 and newer, and only if building with libacl
support
NOTE: https://www.openwall.com/lists/oss-security/2022/12/21/3
CVE-2022-4414 (Cross-site Scripting (XSS) - DOM in GitHub repository
nuxt/framework p ...)
NOT-FOR-US: nuxt
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/34034ef8c66ff7ac6c21bdb6cd7e29d5a218c7a3
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/34034ef8c66ff7ac6c21bdb6cd7e29d5a218c7a3
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
