[Git][security-tracker-team/security-tracker][master] Track fixed version for redis issues via unstable

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
774ae6d1 by Salvatore Bonaccorso at 2023-01-22T20:26:55+01:00
Track fixed version for redis issues via unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5117,7 +5117,7 @@ CVE-2023-22461 (The `sanitize-svg` package, a small SVG 
sanitizer to prevent cro
 CVE-2023-22460 (go-ipld-prime is an implementation of the InterPlanetary 
Linked Data ( ...)
        NOT-FOR-US: go-ipld-prime
 CVE-2023-22458 (Redis is an in-memory database that persists on disk. 
Authenticated us ...)
-       - redis <unfixed> (bug #1029363)
+       - redis 5:7.0.8-1 (bug #1029363)
        [bullseye] - redis <not-affected> (Vulnerable code introduced later)
        [buster] - redis <not-affected> (Vulnerable code introduced later)
        NOTE: 
https://github.com/redis/redis/security/advisories/GHSA-r8w2-2m53-gprj
@@ -43167,7 +43167,7 @@ CVE-2022-35978 (Minetest is a free open-source voxel 
game engine with easy moddi
        NOTE: 
https://github.com/minetest/minetest/security/advisories/GHSA-663q-pcjw-27cc
        NOTE: 
https://github.com/minetest/minetest/commit/da71e86633d0b27cd02d7aac9fdac625d141ca13
 (5.6.0)
 CVE-2022-35977 (Redis is an in-memory database that persists on disk. 
Authenticated us ...)
-       - redis <unfixed>
+       - redis 5:7.0.8-1
        NOTE: 
https://github.com/redis/redis/commit/6c25c6b7da116e110e89a5db45eeae743879e7ea 
(7.0.8)
 CVE-2022-35976 (The GitOps Tools Extension for VSCode relies on kubeconfigs in 
order t ...)
        NOT-FOR-US: GitOps Tools Extension for VSCode



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/774ae6d1f26e6d9bca3857b41be97a5ad5ae2d74

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/774ae6d1f26e6d9bca3857b41be97a5ad5ae2d74
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits