Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker
Commits: afb8ac10 by Thorsten Alteholz at 2023-09-21T00:02:47+02:00 file ist not-affected - - - - - 2 changed files: - data/CVE/list - data/dla-needed.txt Changes: ===================================== data/CVE/list ===================================== @@ -4072,6 +4072,7 @@ CVE-2022-48560 (A use-after-free exists in Python through 3.9 via heappushpop in CVE-2022-48554 (File before 5.43 has an stack-based buffer over-read in file_copystr i ...) {DSA-5489-1} - file 1:5.44-1 + [buster] - file <not-affected> (vulnerable code introduced later) NOTE: https://bugs.astron.com/view.php?id=310 NOTE: Fixed by: https://github.com/file/file/commit/497aabb29cd08d2a5aeb63e45798d65fcbe03502 (FILE5_42) CVE-2022-48547 (A reflected cross-site scripting (XSS) vulnerability in Cacti 0.8.7g a ...) ===================================== data/dla-needed.txt ===================================== @@ -64,10 +64,6 @@ exempi exiv2 NOTE: 20230906: Added by Front-Desk (lamby) -- -file (Thorsten Alteholz) - NOTE: 20230901: Added by Front-Desk (gladk) - NOTE: 20230917: testing package --- firmware-nonfree NOTE: 20230820: Added by Front-Desk (ta) -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/afb8ac1073e0bf635965999a2dbf3e5d67a929a3 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/afb8ac1073e0bf635965999a2dbf3e5d67a929a3 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits