Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
46b881c5 by Salvatore Bonaccorso at 2024-05-17T00:08:45+02:00
Add new chromium issues
- - - - -
488e8ce3 by Salvatore Bonaccorso at 2024-05-17T00:09:33+02:00
Add chromium to dsa-needed list
- - - - -
2 changed files:
- data/CVE/list
- data/dsa-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -41,13 +41,21 @@ CVE-2024-4960 (** UNSUPPORTED WHEN ASSIGNED ** A
vulnerability classified as cri
CVE-2024-4956 (Path Traversal in Sonatype Nexus Repository 3 allows an
unauthenticate ...)
NOT-FOR-US: Sonatype Nexus Repository
CVE-2024-4950 (Inappropriate implementation in Downloads in Google Chrome
prior to 12 ...)
- TODO: check
+ - chromium <unfixed>
+ [bullseye] - chromium <end-of-life> (see #1061268)
+ [buster] - chromium <end-of-life> (see DSA 5046)
CVE-2024-4949 (Use after free in V8 in Google Chrome prior to 125.0.6422.60
allowed a ...)
- TODO: check
+ - chromium <unfixed>
+ [bullseye] - chromium <end-of-life> (see #1061268)
+ [buster] - chromium <end-of-life> (see DSA 5046)
CVE-2024-4948 (Use after free in Dawn in Google Chrome prior to 125.0.6422.60
allowed ...)
- TODO: check
+ - chromium <unfixed>
+ [bullseye] - chromium <end-of-life> (see #1061268)
+ [buster] - chromium <end-of-life> (see DSA 5046)
CVE-2024-4947 (Type Confusion in V8 in Google Chrome prior to 125.0.6422.60
allowed a ...)
- TODO: check
+ - chromium <unfixed>
+ [bullseye] - chromium <end-of-life> (see #1061268)
+ [buster] - chromium <end-of-life> (see DSA 5046)
CVE-2024-4946 (A vulnerability was found in SourceCodester Online Art Gallery
Managem ...)
NOT-FOR-US: SourceCodester Online Art Gallery Management System
CVE-2024-4945 (A vulnerability was found in SourceCodester Best Courier
Management Sy ...)
=====================================
data/dsa-needed.txt
=====================================
@@ -11,6 +11,8 @@ To pick an issue, simply add your uid behind it.
If needed, specify the release by adding a slash after the name of the source
package.
+--
+chromium (dilinger)
--
dnsdist (jmm)
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/ccad9d02f2fd62f6b7894d00e3bc23716dff1946...488e8ce35d8fc36d2f2c3b136a9cd29f9da9f5c0
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/ccad9d02f2fd62f6b7894d00e3bc23716dff1946...488e8ce35d8fc36d2f2c3b136a9cd29f9da9f5c0
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
