Thorsten Alteholz pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
afb8ac10 by Thorsten Alteholz at 2023-09-21T00:02:47+02:00
file ist not-affected
- - - - -
2 changed files:
- data/CVE/list
- data/dla-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -4072,6 +4072,7 @@ CVE-2022-48560 (A use-after-free exists in Python through
3.9 via heappushpop in
CVE-2022-48554 (File before 5.43 has an stack-based buffer over-read in
file_copystr i ...)
{DSA-5489-1}
- file 1:5.44-1
+ [buster] - file <not-affected> (vulnerable code introduced later)
NOTE: https://bugs.astron.com/view.php?id=310
NOTE: Fixed by:
https://github.com/file/file/commit/497aabb29cd08d2a5aeb63e45798d65fcbe03502
(FILE5_42)
CVE-2022-48547 (A reflected cross-site scripting (XSS) vulnerability in Cacti
0.8.7g a ...)
=====================================
data/dla-needed.txt
=====================================
@@ -64,10 +64,6 @@ exempi
exiv2
NOTE: 20230906: Added by Front-Desk (lamby)
--
-file (Thorsten Alteholz)
- NOTE: 20230901: Added by Front-Desk (gladk)
- NOTE: 20230917: testing package
---
firmware-nonfree
NOTE: 20230820: Added by Front-Desk (ta)
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/afb8ac1073e0bf635965999a2dbf3e5d67a929a3
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/afb8ac1073e0bf635965999a2dbf3e5d67a929a3
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
