[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: cf5f6510 by Moritz Muehlenhoff at 2024-05-21T23:20:48+02:00 new chromium issues - - - - - 2 changed files: - data/CVE/list - data/dsa-needed.txt Changes: = data/CVE/list = @@ -1,3 +1,19 @@ +CVE-2024-5160 + - chromium + [bullseye] - chromium (see #1061268) + [buster] - chromium (see DSA 5046) +CVE-2024-5159 + - chromium + [bullseye] - chromium (see #1061268) + [buster] - chromium (see DSA 5046) +CVE-2024-5158 + - chromium + [bullseye] - chromium (see #1061268) + [buster] - chromium (see DSA 5046) +CVE-2024-5157 + - chromium + [bullseye] - chromium (see #1061268) + [buster] - chromium (see DSA 5046) CVE-2024-4988 (The mobile application (com.transsion.videocallenhancer) interface has ...) TODO: check CVE-2024-4876 (The HT Mega \u2013 Absolute Addons For Elementor plugin for WordPress ...) = data/dsa-needed.txt = @@ -11,6 +11,8 @@ To pick an issue, simply add your uid behind it. If needed, specify the release by adding a slash after the name of the source package. +-- +chromium (dilinger) -- dnsdist (jmm) -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cf5f6510609976b005c6f2689f8059b76da0544b -- This project does not include diff previews in email notifications. View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cf5f6510609976b005c6f2689f8059b76da0544b You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 44dd9776 by Moritz Muehlenhoff at 2024-05-01T13:56:53+02:00 new chromium issues - - - - - 2 changed files: - data/CVE/list - data/dsa-needed.txt Changes: = data/CVE/list = @@ -1,3 +1,11 @@ +CVE-2024-4331 + - chromium + [bullseye] - chromium (see #1061268) + [buster] - chromium (see DSA 5046) +CVE-2024-4368 + - chromium + [bullseye] - chromium (see #1061268) + [buster] - chromium (see DSA 5046) CVE-2024-4369 (An information disclosure flaw was found in OpenShift's internal image ...) NOT-FOR-US: OpenShift CVE-2024-4349 (A vulnerability has been found in SourceCodester Pisay Online E-Learni ...) = data/dsa-needed.txt = @@ -16,6 +16,8 @@ atril (jmm) -- dav1d (jmm) -- +chromium (dilinger) +-- dnsdist (jmm) -- dnsmasq View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/44dd97762c4c362bba0a6d5f06ac5e115f98cf61 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/44dd97762c4c362bba0a6d5f06ac5e115f98cf61 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 89dea128 by Moritz Muehlenhoff at 2024-04-24T22:30:40+02:00 new chromium issues - - - - - 2 changed files: - data/CVE/list - data/dsa-needed.txt Changes: = data/CVE/list = @@ -1,3 +1,15 @@ +CVE-2024-4060 + - chromium + [bullseye] - chromium (see #1061268) + [buster] - chromium (see DSA 5046) +CVE-2024-4059 + - chromium + [bullseye] - chromium (see #1061268) + [buster] - chromium (see DSA 5046) +CVE-2024-4058 + - chromium + [bullseye] - chromium (see #1061268) + [buster] - chromium (see DSA 5046) CVE-2024-4141 (Out-of-bounds array write in Xpdf 4.05 and earlier, triggered by an in ...) TODO: check CVE-2024-4127 (A vulnerability was found in Tenda W15E 15.11.0.14. It has been classi ...) = data/dsa-needed.txt = @@ -14,6 +14,8 @@ If needed, specify the release by adding a slash after the name of the source pa -- atril -- +chromium (dilinger) +-- dav1d -- dnsdist (jmm) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/89dea12856acad42ac395f682dff06d416afb1fd -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/89dea12856acad42ac395f682dff06d416afb1fd You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: eb914f08 by Moritz Muehlenhoff at 2024-03-06T08:43:09+01:00 new chromium issues - - - - - 2 changed files: - data/CVE/list - data/dsa-needed.txt Changes: = data/CVE/list = @@ -1,3 +1,15 @@ +CVE-2024-2176 + - chromium 122.0.6261.111-1 + [bullseye] - chromium (see #1061268) + [buster] - chromium (see DSA 5046) +CVE-2024-2174 + - chromium 122.0.6261.111-1 + [bullseye] - chromium (see #1061268) + [buster] - chromium (see DSA 5046) +CVE-2024-2173 + - chromium 122.0.6261.111-1 + [bullseye] - chromium (see #1061268) + [buster] - chromium (see DSA 5046) CVE-2024-26628 [drm/amdkfd: Fix lock dependency warning] - linux 6.7.7-1 NOTE: https://git.kernel.org/linus/47bf0f83fc86df1bf42b385a91aadb910137c5c9 (6.8-rc1) = data/dsa-needed.txt = @@ -14,6 +14,8 @@ If needed, specify the release by adding a slash after the name of the source pa -- cacti -- +chromium (dilinger) +-- cryptojs -- dav1d View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/eb914f08fdf2f21410a1d2d4b050165c916b8429 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/eb914f08fdf2f21410a1d2d4b050165c916b8429 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: c12e4397 by Moritz Muehlenhoff at 2024-01-30T23:01:17+01:00 new chromium issues - - - - - 2 changed files: - data/CVE/list - data/dsa-needed.txt Changes: = data/CVE/list = @@ -1,3 +1,15 @@ +CVE-2024-1060 + - chromium + [bullseye] - chromium (see #1061268) + [buster] - chromium (see DSA 5046) +CVE-2024-1059 + - chromium + [bullseye] - chromium (see #1061268) + [buster] - chromium (see DSA 5046) +CVE-2024-1077 + - chromium + [bullseye] - chromium (see #1061268) + [buster] - chromium (see DSA 5046) CVE-2024-24565 (CrateDB is a distributed SQL database that makes it simple to store an ...) TODO: check CVE-2024-24558 (TanStack Query supplies asynchronous state management, server-state ut ...) = data/dsa-needed.txt = @@ -14,6 +14,8 @@ If needed, specify the release by adding a slash after the name of the source pa -- cacti -- +chromium (dilinger) +-- cryptojs -- dnsdist (jmm) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c12e4397f4f9bb9f837a6ec74a58618cec6ec2b8 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c12e4397f4f9bb9f837a6ec74a58618cec6ec2b8 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues (fixed in sid)
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: a714f2b7 by Moritz Muehlenhoff at 2023-10-11T09:10:50+02:00 new chromium issues (fixed in sid) - - - - - 2 changed files: - data/CVE/list - data/dsa-needed.txt Changes: = data/CVE/list = @@ -1,3 +1,45 @@ +CVE-2023-5473 + - chromium 118.0.5993.70-1 + [buster] - chromium (see DSA 5046) +CVE-2023-5486 + - chromium 118.0.5993.70-1 + [buster] - chromium (see DSA 5046) +CVE-2023-5477 + - chromium 118.0.5993.70-1 + [buster] - chromium (see DSA 5046) +CVE-2023-5478 + - chromium 118.0.5993.70-1 + [buster] - chromium (see DSA 5046) +CVE-2023-5485 + - chromium 118.0.5993.70-1 + [buster] - chromium (see DSA 5046) +CVE-2023-5479 + - chromium 118.0.5993.70-1 + [buster] - chromium (see DSA 5046) +CVE-2023-5476 + - chromium 118.0.5993.70-1 + [buster] - chromium (see DSA 5046) +CVE-2023-5474 + - chromium 118.0.5993.70-1 + [buster] - chromium (see DSA 5046) +CVE-2023-5475 + - chromium 118.0.5993.70-1 + [buster] - chromium (see DSA 5046) +CVE-2023-5481 + - chromium 118.0.5993.70-1 + [buster] - chromium (see DSA 5046) +CVE-2023-5483 + - chromium 118.0.5993.70-1 + [buster] - chromium (see DSA 5046) +CVE-2023-5484 + - chromium 118.0.5993.70-1 + [buster] - chromium (see DSA 5046) +CVE-2023-5487 + - chromium 118.0.5993.70-1 + [buster] - chromium (see DSA 5046) +CVE-2023-5218 + - chromium 118.0.5993.70-1 + [buster] - chromium (see DSA 5046) CVE-2023-4421 - nss NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2238677 = data/dsa-needed.txt = @@ -17,6 +17,8 @@ audiofile -- cacti -- +chromium (jmm) +-- cinder/oldstable -- gpac/oldstable (jmm) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a714f2b753c5e0223c4a7afceeb1baa1007cd3cb -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a714f2b753c5e0223c4a7afceeb1baa1007cd3cb You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 747f27c4 by Moritz Mühlenhoff at 2023-08-02T23:01:58+02:00 new chromium issues - - - - - 2 changed files: - data/CVE/list - data/dsa-needed.txt Changes: = data/CVE/list = @@ -1,3 +1,36 @@ +CVE-2023-4078 + - chromium + [buster] - chromium (see DSA 5046) +CVE-2023-4077 + - chromium + [buster] - chromium (see DSA 5046) +CVE-2023-4076 + - chromium + [buster] - chromium (see DSA 5046) +CVE-2023-4075 + - chromium + [buster] - chromium (see DSA 5046) +CVE-2023-4074 + - chromium + [buster] - chromium (see DSA 5046) +CVE-2023-4073 + - chromium + [buster] - chromium (see DSA 5046) +CVE-2023-4072 + - chromium + [buster] - chromium (see DSA 5046) +CVE-2023-4071 + - chromium + [buster] - chromium (see DSA 5046) +CVE-2023-4070 + - chromium + [buster] - chromium (see DSA 5046) +CVE-2023-4069 + - chromium + [buster] - chromium (see DSA 5046) +CVE-2023-4068 + - chromium + [buster] - chromium (see DSA 5046) CVE-2023-4067 (The Bus Ticket Booking with Seat Reservation plugin for WordPress is v ...) NOT-FOR-US: Bus Ticket Booking with Seat Reservation plugin for WordPress CVE-2023-3978 (Text nodes not in the HTML namespace are incorrectly literally rendere ...) = data/dsa-needed.txt = @@ -1,5 +1,5 @@ A DSA is needed for the following source packages in old/stable. The specific -CVE IDs do not need to be listed, they can be gathered in an up-to-date manner from +11;rgb://CVE IDs do not need to be listed, they can be gathered in an up-to-date manner from https://security-tracker.debian.org/tracker/source-package/SOURCEPACKAGE when working on an update. @@ -14,6 +14,8 @@ If needed, specify the release by adding a slash after the name of the source pa -- aom/oldstable -- +chromium (jmm) +-- cjose Maintainer asked to prepare updates -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/747f27c4c26d5d8559da0c1de551108cf5d80552 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/747f27c4c26d5d8559da0c1de551108cf5d80552 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] "new" chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 9dc4f83c by Moritz Mühlenhoff at 2023-08-01T16:22:10+02:00 new chromium issues - - - - - 2 changed files: - data/CVE/list - data/DSA/list Changes: = data/CVE/list = @@ -26783,21 +26783,44 @@ CVE-2022-48322 (NETGEAR Nighthawk WiFi Mesh systems and routers are affected by CVE-2021-4324 (Insufficient policy enforcement in Google Update in Google Chrome prio ...) - chromium (Not applicable to Debian builds) CVE-2021-4323 (Insufficient validation of untrusted input in Extensions in Google Chr ...) - TODO: check + {DSA-4906-1} + - chromium 90.0.4430.72-1 (bug #987053) + [stretch] - chromium (see DSA 4562) CVE-2021-4322 (Use after free in DevTools in Google Chrome prior to 91.0.4472.77 allo ...) - TODO: check + {DSA-5046-1} + - chromium 97.0.4692.71-0.1 + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2021-4321 (Policy bypass in Blink in Google Chrome prior to 91.0.4472.77 allowed ...) - TODO: check + {DSA-5046-1} + - chromium 97.0.4692.71-0.1 + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2021-4320 (Use after free in Blink in Google Chrome prior to 92.0.4515.107 allowe ...) - TODO: check + {DSA-5046-1} + - chromium 97.0.4692.71-0.1 + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2021-4319 (Use after free in Blink in Google Chrome prior to 93.0.4577.82 allowed ...) - TODO: check + {DSA-5046-1} + - chromium 97.0.4692.71-0.1 + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2021-4318 (Object corruption in Blink in Google Chrome prior to 94.0.4606.54 allo ...) - TODO: check + {DSA-5046-1} + - chromium 97.0.4692.71-0.1 + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2021-4317 (Use after free in ANGLE in Google Chrome prior to 96.0.4664.93 allowed ...) - TODO: check + {DSA-5046-1} + - chromium 97.0.4692.71-0.1 + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2021-4316 (Inappropriate implementation in Cast UI in Google Chrome prior to 96.0 ...) - TODO: check + {DSA-5046-1} + - chromium 97.0.4692.71-0.1 + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2015-10079 (A vulnerability was found in juju2143 WalrusIRC 0.0.2. It has been rat ...) NOT-FOR-US: juju2143 WalrusIRC CVE-2023-25690 (Some mod_proxy configurations on Apache HTTP Server versions 2.4.0 thr ...) = data/DSA/list = @@ -1376,7 +1376,7 @@ [buster] - prosody 0.11.2-1+deb10u3 [bullseye] - prosody 0.11.9-2+deb11u1 [14 Jan 2022] DSA-5046-1 chromium - security update - {CVE-2021-4052 CVE-2021-4053 CVE-2021-4054 CVE-2021-4055 CVE-2021-4056 CVE-2021-4057 CVE-2021-4058 CVE-2021-4059 CVE-2021-4061 CVE-2021-4062 CVE-2021-4063 CVE-2021-4064 CVE-2021-4065 CVE-2021-4066 CVE-2021-4067 CVE-2021-4068 CVE-2021-4078 CVE-2021-4079 CVE-2021-4098 CVE-2021-4099 CVE-2021-4100 CVE-2021-4101 CVE-2021-4102 CVE-2021-37956 CVE-2021-37957 CVE-2021-37958 CVE-2021-37959 CVE-2021-37961 CVE-2021-37962 CVE-2021-37963 CVE-2021-37964 CVE-2021-37965 CVE-2021-37966 CVE-2021-37967 CVE-2021-37968 CVE-2021-37969 CVE-2021-37970 CVE-2021-37971 CVE-2021-37972 CVE-2021-37973 CVE-2021-37974 CVE-2021-37975 CVE-2021-37976 CVE-2021-37977 CVE-2021-37978 CVE-2021-37979 CVE-2021-37980 CVE-2021-37981 CVE-2021-37982 CVE-2021-37983 CVE-2021-37984 CVE-2021-37985 CVE-2021-37986 CVE-2021-37987 CVE-2021-37988 CVE-2021-37989 CVE-2021-37990 CVE-2021-37991 CVE-2021-37992 CVE-2021-37993 CVE-2021-37994 CVE-2021-37995 CVE-2021-37996 CVE-2021-37997 CVE-2021-37998 CVE-2021-37999 CVE-2021-38000 CVE-2021-38001 CVE-2021-38002 CVE-2021-38003 CVE-2021-38004 CVE-2021-38005 CVE-2021-38006 CVE-2021-38007 CVE-2021-38008 CVE-2021-38009 CVE-2021-38010 CVE-2021-38011 CVE-2021-38012 CVE-2021-38013 CVE-2021-38014 CVE-2021-38015 CVE-2021-38016 CVE-2021-38017 CVE-2021-38018 CVE-2021-38019 CVE-2021-38020 CVE-2021-38021 CVE-2021-38022 CVE-2022-0096 CVE-2022-0097 CVE-2022-0098 CVE-2022-0099 CVE-2022-0100 CVE-2022-0101 CVE-2022-0102 CVE-2022-0103 CVE-2022-0104 CVE-2022-0105 CVE-2022-0106 CVE-2022-0107 CVE-2022-0108 CVE-2022-0109 CVE-2022-0110 CVE-2022-0111 CVE-2022-0112 CVE-2022-0113 CVE-2022-0114 CVE-2022-0115 CVE-2022-0116 CVE-2022-0117 CVE-2022-0118 CVE-2022-0120 CVE-2021-30558 CVE-2022-4924 CVE-2022-4925} + {CVE-2021-4052 CVE-2021-4053 CVE-2021-4054 CVE-2021-4055 CVE-2021-4056 CVE-2021-4057 CVE-2021-4058 CVE-2021-4059 CVE-2021-4061 CVE-2021-4062
[Git][security-tracker-team/security-tracker][master] "new" chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: a06850ba by Moritz Mühlenhoff at 2023-08-01T14:29:34+02:00 new chromium issues - - - - - 2 changed files: - data/CVE/list - data/DSA/list Changes: = data/CVE/list = @@ -26755,23 +26755,33 @@ CVE-2022-4912 (Type Confusion in MathML in Google Chrome prior to 105.0.5195.52 - chromium 105.0.5195.52-1 [buster] - chromium (see DSA 5046) CVE-2022-4911 (Insufficient data validation in DevTools in Google Chrome prior to 106 ...) - TODO: check + {DSA-5244-1} + - chromium 106.0.5249.61-1 + [buster] - chromium (see DSA 5046) CVE-2022-4910 (Inappropriate implementation in Autofill in Google Chrome prior to 107 ...) - TODO: check + {DSA-5261-1} + - chromium 107.0.5304.68-1 + [buster] - chromium (see DSA 5046) CVE-2022-4909 (Inappropriate implementation in XML in Google Chrome prior to 107.0.53 ...) - TODO: check + {DSA-5261-1} + - chromium 107.0.5304.68-1 + [buster] - chromium (see DSA 5046) CVE-2022-4908 (Inappropriate implementation in iFrame Sandbox in Google Chrome prior ...) - TODO: check + {DSA-5261-1} + - chromium 107.0.5304.68-1 + [buster] - chromium (see DSA 5046) CVE-2022-4907 (Uninitialized Use in FFmpeg in Google Chrome prior to 108.0.5359.71 al ...) TODO: check CVE-2022-4906 (Inappropriate implementation in Blink in Google Chrome prior to 108.0. ...) - TODO: check + {DSA-5293-1} + - chromium 108.0.5359.71-1 + [buster] - chromium (see DSA 5046) CVE-2022-48323 (Sunlogin Sunflower Simplified (aka Sunflower Simple and Personal) 1.0. ...) NOT-FOR-US: Sunlogin Sunflower Simplified CVE-2022-48322 (NETGEAR Nighthawk WiFi Mesh systems and routers are affected by a stac ...) NOT-FOR-US: NETGEAR CVE-2021-4324 (Insufficient policy enforcement in Google Update in Google Chrome prio ...) - TODO: check + - chromium (Not applicable to Debian builds) CVE-2021-4323 (Insufficient validation of untrusted input in Extensions in Google Chr ...) TODO: check CVE-2021-4322 (Use after free in DevTools in Google Chrome prior to 91.0.4472.77 allo ...) = data/DSA/list = @@ -539,7 +539,7 @@ {CVE-2021-34055 CVE-2022-41751} [bullseye] - jhead 1:3.04-6+deb11u1 [03 Dec 2022] DSA-5293-1 chromium - security update - {CVE-2022-4174 CVE-2022-4175 CVE-2022-4176 CVE-2022-4177 CVE-2022-4178 CVE-2022-4179 CVE-2022-4180 CVE-2022-4181 CVE-2022-4182 CVE-2022-4183 CVE-2022-4184 CVE-2022-4185 CVE-2022-4186 CVE-2022-4187 CVE-2022-4188 CVE-2022-4189 CVE-2022-4190 CVE-2022-4191 CVE-2022-4192 CVE-2022-4193 CVE-2022-4194 CVE-2022-4195} + {CVE-2022-4174 CVE-2022-4175 CVE-2022-4176 CVE-2022-4177 CVE-2022-4178 CVE-2022-4179 CVE-2022-4180 CVE-2022-4181 CVE-2022-4182 CVE-2022-4183 CVE-2022-4184 CVE-2022-4185 CVE-2022-4186 CVE-2022-4187 CVE-2022-4188 CVE-2022-4189 CVE-2022-4190 CVE-2022-4191 CVE-2022-4192 CVE-2022-4193 CVE-2022-4194 CVE-2022-4195 CVE-2022-4906} [bullseye] - chromium 108.0.5359.71-2~deb11u1 [01 Dec 2022] DSA-5292-1 snapd - security update {CVE-2022-3328} @@ -636,7 +636,7 @@ {CVE-2022-42927 CVE-2022-42928 CVE-2022-42929 CVE-2022-42932} [bullseye] - thunderbird 1:102.4.0-1~deb11u1 [26 Oct 2022] DSA-5261-1 chromium - security update - {CVE-2022-3652 CVE-2022-3653 CVE-2022-3654 CVE-2022-3655 CVE-2022-3656 CVE-2022-3657 CVE-2022-3658 CVE-2022-3659 CVE-2022-3660 CVE-2022-3661} + {CVE-2022-3652 CVE-2022-3653 CVE-2022-3654 CVE-2022-3655 CVE-2022-3656 CVE-2022-3657 CVE-2022-3658 CVE-2022-3659 CVE-2022-3660 CVE-2022-3661 CVE-2022-4910 CVE-2022-4909 CVE-2022-4908} [bullseye] - chromium 107.0.5304.68-1~deb11u1 [23 Oct 2022] DSA-5260-1 lava - security update {CVE-2022-42902} @@ -689,7 +689,7 @@ {CVE-2022-3370 CVE-2022-3373} [bullseye] - chromium 106.0.5249.91-1~deb11u1 [28 Sep 2022] DSA-5244-1 chromium - security update - {CVE-2022-3201 CVE-2022-3304 CVE-2022-3305 CVE-2022-3306 CVE-2022-3307 CVE-2022-3308 CVE-2022-3309 CVE-2022-3310 CVE-2022-3311 CVE-2022-3312 CVE-2022-3313 CVE-2022-3314 CVE-2022-3315 CVE-2022-3316 CVE-2022-3317 CVE-2022-3318 CVE-2022-3443 CVE-2022-3444} + {CVE-2022-3201 CVE-2022-3304 CVE-2022-3305 CVE-2022-3306 CVE-2022-3307 CVE-2022-3308 CVE-2022-3309 CVE-2022-3310 CVE-2022-3311 CVE-2022-3312 CVE-2022-3313 CVE-2022-3314 CVE-2022-3315 CVE-2022-3316 CVE-2022-3317 CVE-2022-3318 CVE-2022-3443 CVE-2022-3444 CVE-2022-4911} [bullseye] - chromium 106.0.5249.61-1~deb11u1 [28 Sep 2022] DSA-5243-1 lighttpd - security update {CVE-2022-37797 CVE-2022-41556} View it on GitLab:
[Git][security-tracker-team/security-tracker][master] "new" chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 2b2b63a0 by Moritz Mühlenhoff at 2023-08-01T14:12:03+02:00 new chromium issues - - - - - 2 changed files: - data/CVE/list - data/DSA/list Changes: = data/CVE/list = @@ -26724,19 +26724,36 @@ CVE-2022-4919 (Use after free in Base Internals in Google Chrome prior to 101.0. [buster] - chromium (see DSA 5046) [stretch] - chromium (see DSA 4562) CVE-2022-4918 (Use after free in UI in Google Chrome prior to 102.0.5005.61 allowed a ...) - TODO: check + {DSA-5148-1} + - chromium 102.0.5005.61-1 + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-4917 (Incorrect security UI in Notifications in Google Chrome on Android pri ...) - TODO: check + {DSA-5168-1} + - chromium 103.0.5060.53-1 + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-4916 (Use after free in Media in Google Chrome prior to 103.0.5060.53 allowe ...) - TODO: check + {DSA-5168-1} + - chromium 103.0.5060.53-1 + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-4915 (Inappropriate implementation in URL Formatting in Google Chrome prior ...) - TODO: check + {DSA-5187-1} + - chromium 103.0.5060.134-1 + [buster] - chromium (see DSA 5046) CVE-2022-4914 (Heap buffer overflow in PrintPreview in Google Chrome prior to 104.0.5 ...) - TODO: check + {DSA-5201-1} + - chromium 104.0.5112.79-1 + [buster] - chromium (see DSA 5046) CVE-2022-4913 (Inappropriate implementation in Extensions in Google Chrome prior to 1 ...) - TODO: check + {DSA-5223-1} + - chromium 105.0.5195.52-1 + [buster] - chromium (see DSA 5046) CVE-2022-4912 (Type Confusion in MathML in Google Chrome prior to 105.0.5195.52 allow ...) - TODO: check + {DSA-5223-1} + - chromium 105.0.5195.52-1 + [buster] - chromium (see DSA 5046) CVE-2022-4911 (Insufficient data validation in DevTools in Google Chrome prior to 106 ...) TODO: check CVE-2022-4910 (Inappropriate implementation in Autofill in Google Chrome prior to 107 ...) = data/DSA/list = @@ -752,7 +752,7 @@ {CVE-2022-27337 CVE-2022-38784} [bullseye] - poppler 20.09.0-3.1+deb11u1 [01 Sep 2022] DSA-5223-1 chromium - security update - {CVE-2022-3038 CVE-2022-3039 CVE-2022-3040 CVE-2022-3041 CVE-2022-3042 CVE-2022-3043 CVE-2022-3044 CVE-2022-3045 CVE-2022-3046 CVE-2022-3047 CVE-2022-3048 CVE-2022-3049 CVE-2022-3050 CVE-2022-3051 CVE-2022-3052 CVE-2022-3053 CVE-2022-3054 CVE-2022-3055 CVE-2022-3056 CVE-2022-3057 CVE-2022-3058 CVE-2022-3071} + {CVE-2022-3038 CVE-2022-3039 CVE-2022-3040 CVE-2022-3041 CVE-2022-3042 CVE-2022-3043 CVE-2022-3044 CVE-2022-3045 CVE-2022-3046 CVE-2022-3047 CVE-2022-3048 CVE-2022-3049 CVE-2022-3050 CVE-2022-3051 CVE-2022-3052 CVE-2022-3053 CVE-2022-3054 CVE-2022-3055 CVE-2022-3056 CVE-2022-3057 CVE-2022-3058 CVE-2022-3071 CVE-2022-4912 CVE-2022-4913} [bullseye] - chromium 105.0.5195.52-1~deb11u1 [30 Aug 2022] DSA-5222-1 dpdk - security update {CVE-2022-2132 CVE-2022-28199} @@ -818,7 +818,7 @@ {CVE-2022-0529 CVE-2022-0530} [bullseye] - unzip 6.0-26+deb11u1 [07 Aug 2022] DSA-5201-1 chromium - security update - {CVE-2022-2603 CVE-2022-2604 CVE-2022-2605 CVE-2022-2606 CVE-2022-2607 CVE-2022-2608 CVE-2022-2609 CVE-2022-2610 CVE-2022-2611 CVE-2022-2612 CVE-2022-2613 CVE-2022-2614 CVE-2022-2615 CVE-2022-2616 CVE-2022-2617 CVE-2022-2618 CVE-2022-2619 CVE-2022-2620 CVE-2022-2621 CVE-2022-2622 CVE-2022-2623 CVE-2022-2624 CVE-2022-2742 CVE-2022-2743} + {CVE-2022-2603 CVE-2022-2604 CVE-2022-2605 CVE-2022-2606 CVE-2022-2607 CVE-2022-2608 CVE-2022-2609 CVE-2022-2610 CVE-2022-2611 CVE-2022-2612 CVE-2022-2613 CVE-2022-2614 CVE-2022-2615 CVE-2022-2616 CVE-2022-2617 CVE-2022-2618 CVE-2022-2619 CVE-2022-2620 CVE-2022-2621 CVE-2022-2622 CVE-2022-2623 CVE-2022-2624 CVE-2022-2742 CVE-2022-2743 CVE-2022-4914} [bullseye] - chromium 104.0.5112.79-1~deb11u1 [07 Aug 2022] DSA-5200-1 libtirpc - security update {CVE-2021-46828} @@ -867,7 +867,7 @@ [buster] - openjdk-11 11.0.16+8-1~deb10u1 [bullseye] - openjdk-11 11.0.16+8-1~deb11u1 [22 Jul 2022] DSA-5187-1 chromium - security update - {CVE-2022-2163 CVE-2022-2477 CVE-2022-2478 CVE-2022-2479 CVE-2022-2480 CVE-2022-2481} + {CVE-2022-2163 CVE-2022-2477 CVE-2022-2478 CVE-2022-2479 CVE-2022-2480 CVE-2022-2481 CVE-2022-4915} [bullseye] - chromium 103.0.5060.134-1~deb11u1 [22 Jul 2022] DSA-5186-1 djangorestframework - security update {CVE-2020-25626 CVE-2018-25045} @@ -934,7 +934,7
[Git][security-tracker-team/security-tracker][master] "new" chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 13e603c7 by Moritz Mühlenhoff at 2023-08-01T13:43:56+02:00 new chromium issues - - - - - 2 changed files: - data/CVE/list - data/DSA/list Changes: = data/CVE/list = @@ -26689,19 +26689,40 @@ CVE-2023-0795 (LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiff NOTE: https://gitlab.com/libtiff/libtiff/-/commit/afaabc3e50d4e5d80a94143f7e3c997e7e410f68 NOTE: https://gitlab.com/libtiff/libtiff/-/issues/493 CVE-2022-4925 (Insufficient validation of untrusted input in QUIC in Google Chrome pr ...) - TODO: check + {DSA-5046-1} + - chromium 97.0.4692.71-0.1 + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-4924 (Use after free in WebRTC in Google Chrome prior to 97.0.4692.71 allowe ...) - TODO: check + {DSA-5046-1} + - chromium 97.0.4692.71-0.1 + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-4923 (Inappropriate implementation in Omnibox in Google Chrome prior to 99.0 ...) - TODO: check + {DSA-5089-1} + - chromium 99.0.4844.51-1 + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-4922 (Inappropriate implementation in Blink in Google Chrome prior to 99.0.4 ...) - TODO: check + {DSA-5089-1} + - chromium 99.0.4844.51-1 + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-4921 (Use after free in Accessibility in Google Chrome prior to 99.0.4844.51 ...) - TODO: check + {DSA-5089-1} + - chromium 99.0.4844.51-1 + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-4920 (Heap buffer overflow in Blink in Google Chrome prior to 101.0.4951.41 ...) - TODO: check + {DSA-5125-1} + - chromium 101.0.4951.41-1 + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-4919 (Use after free in Base Internals in Google Chrome prior to 101.0.4951. ...) - TODO: check + {DSA-5125-1} + - chromium 101.0.4951.41-1 + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-4918 (Use after free in UI in Google Chrome prior to 102.0.5005.61 allowed a ...) TODO: check CVE-2022-4917 (Incorrect security UI in Notifications in Google Chrome on Android pri ...) = data/DSA/list = @@ -1087,7 +1087,7 @@ {CVE-2020-20891 CVE-2020-20892 CVE-2020-20896 CVE-2020-21688 CVE-2020-21697 CVE-2021-3566} [buster] - ffmpeg 7:4.1.9-0+deb10u1 [27 Apr 2022] DSA-5125-1 chromium - security update - {CVE-2022-1477 CVE-2022-1478 CVE-2022-1479 CVE-2022-1481 CVE-2022-1482 CVE-2022-1483 CVE-2022-1484 CVE-2022-1485 CVE-2022-1486 CVE-2022-1487 CVE-2022-1488 CVE-2022-1489 CVE-2022-1490 CVE-2022-1491 CVE-2022-1492 CVE-2022-1493 CVE-2022-1494 CVE-2022-1495 CVE-2022-1496 CVE-2022-1497 CVE-2022-1498 CVE-2022-1499 CVE-2022-1500 CVE-2022-1501} + {CVE-2022-1477 CVE-2022-1478 CVE-2022-1479 CVE-2022-1481 CVE-2022-1482 CVE-2022-1483 CVE-2022-1484 CVE-2022-1485 CVE-2022-1486 CVE-2022-1487 CVE-2022-1488 CVE-2022-1489 CVE-2022-1490 CVE-2022-1491 CVE-2022-1492 CVE-2022-1493 CVE-2022-1494 CVE-2022-1495 CVE-2022-1496 CVE-2022-1497 CVE-2022-1498 CVE-2022-1499 CVE-2022-1500 CVE-2022-1501 CVE-2022-4920 CVE-2022-4919} [bullseye] - chromium 101.0.4951.41-1~deb11u1 [25 Apr 2022] DSA-5124-1 ffmpeg - security update {CVE-2022-1475} @@ -1217,7 +1217,7 @@ [buster] - firefox-esr 91.6.1esr-1~deb10u1 [bullseye] - firefox-esr 91.6.1esr-1~deb11u1 [04 Mar 2022] DSA-5089-1 chromium - security update - {CVE-2022-0789 CVE-2022-0790 CVE-2022-0791 CVE-2022-0792 CVE-2022-0793 CVE-2022-0794 CVE-2022-0795 CVE-2022-0796 CVE-2022-0797 CVE-2022-0798 CVE-2022-0799 CVE-2022-0800 CVE-2022-0801 CVE-2022-0802 CVE-2022-0803 CVE-2022-0804 CVE-2022-0805 CVE-2022-0806 CVE-2022-0807 CVE-2022-0808 CVE-2022-0809} + {CVE-2022-0789 CVE-2022-0790 CVE-2022-0791 CVE-2022-0792 CVE-2022-0793 CVE-2022-0794 CVE-2022-0795 CVE-2022-0796 CVE-2022-0797 CVE-2022-0798 CVE-2022-0799 CVE-2022-0800 CVE-2022-0801 CVE-2022-0802 CVE-2022-0803 CVE-2022-0804 CVE-2022-0805 CVE-2022-0806 CVE-2022-0807 CVE-2022-0808 CVE-2022-0809 CVE-2022-4921 CVE-2022-4922 CVE-2022-4923} [bullseye] - chromium 99.0.4844.51-1~deb11u1 [03 Mar 2022] DSA-5088-1 varnish - security update {CVE-2021-36740 CVE-2022-23959} @@ -1376,7 +1376,7 @@ [buster] - prosody 0.11.2-1+deb10u3 [bullseye] - prosody 0.11.9-2+deb11u1 [14 Jan 2022] DSA-5046-1 chromium - security update - {CVE-2021-4052 CVE-2021-4053 CVE-2021-4054
[Git][security-tracker-team/security-tracker][master] "new" chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 9ef7656b by Moritz Mühlenhoff at 2023-08-01T13:36:58+02:00 new chromium issues - - - - - 2 changed files: - data/CVE/list - data/DSA/list Changes: = data/CVE/list = @@ -9833,7 +9833,9 @@ CVE-2023-31194 (An improper array index validation vulnerability exists in the G CVE-2023-27390 (A heap-based buffer overflow vulnerability exists in the Sequence::Dra ...) NOT-FOR-US: Diagon CVE-2023-2314 (Insufficient data validation in DevTools in Google Chrome prior to 111 ...) - TODO: check + {DSA-5371-1} + - chromium 111.0.5563.64-1 + [buster] - chromium (see DSA 5046) CVE-2023-2313 (Inappropriate implementation in Sandbox in Google Chrome on Windows pr ...) {DSA-5386-1} - chromium 112.0.5615.49-1 @@ -9841,7 +9843,9 @@ CVE-2023-2313 (Inappropriate implementation in Sandbox in Google Chrome on Windo CVE-2023-2312 RESERVED CVE-2023-2311 (Insufficient policy enforcement in File System API in Google Chrome pr ...) - TODO: check + {DSA-5386-1} + - chromium 112.0.5615.49-1 + [buster] - chromium (see DSA 5046) CVE-2023-2310 (A Channel Accessible by Non-Endpoint vulnerability in the Schweitzer E ...) NOT-FOR-US: Schweitzer Engineering Laboratories CVE-2023-2309 (The wpForo Forum WordPress plugin before 2.1.9 does not escape some re ...) @@ -21966,7 +21970,9 @@ CVE-2023- CVE-2023-1110 RESERVED CVE-2022-4926 (Insufficient policy enforcement in Intents in Google Chrome on Android ...) - TODO: check + {DSA-5328-1} + - chromium 109.0.5414.119-1 + [buster] - chromium (see DSA 5046) CVE-2021-4327 (A vulnerability was found in SerenityOS. It has been rated as critical ...) NOT-FOR-US: SerenityOS CVE-2023-27381 = data/DSA/list = @@ -258,7 +258,7 @@ {CVE-2023-1668} [bullseye] - openvswitch 2.15.0+ds1-2+deb11u4 [12 Apr 2023] DSA-5386-1 chromium - security update - {CVE-2023-1810 CVE-2023-1811 CVE-2023-1812 CVE-2023-1813 CVE-2023-1814 CVE-2023-1815 CVE-2023-1816 CVE-2023-1817 CVE-2023-1818 CVE-2023-1819 CVE-2023-1820 CVE-2023-1821 CVE-2023-1822 CVE-2023-1823 CVE-2023-2313} + {CVE-2023-1810 CVE-2023-1811 CVE-2023-1812 CVE-2023-1813 CVE-2023-1814 CVE-2023-1815 CVE-2023-1816 CVE-2023-1817 CVE-2023-1818 CVE-2023-1819 CVE-2023-1820 CVE-2023-1821 CVE-2023-1822 CVE-2023-1823 CVE-2023-2313 CVE-2023-2311} [bullseye] - chromium 112.0.5615.49-2~deb11u2 [12 Apr 2023] DSA-5385-1 firefox-esr - security update {CVE-2023-1945 CVE-2023-1999 CVE-2023-29533 CVE-2023-29535 CVE-2023-29536 CVE-2023-29539 CVE-2023-29541 CVE-2023-29548 CVE-2023-29550} @@ -305,7 +305,7 @@ {CVE-2021-22942 CVE-2021-44528 CVE-2022-21831 CVE-2022-22577 CVE-2022-23633 CVE-2022-2 CVE-2023-22792 CVE-2023-22794 CVE-2023-22795 CVE-2023-22796} [bullseye] - rails 2:6.0.3.7+dfsg-2+deb11u1 [09 Mar 2023] DSA-5371-1 chromium - security update - {CVE-2023-1213 CVE-2023-1214 CVE-2023-1215 CVE-2023-1216 CVE-2023-1217 CVE-2023-1218 CVE-2023-1219 CVE-2023-1220 CVE-2023-1221 CVE-2023-1222 CVE-2023-1223 CVE-2023-1224 CVE-2023-1225 CVE-2023-1226 CVE-2023-1227 CVE-2023-1228 CVE-2023-1229 CVE-2023-1230 CVE-2023-1231 CVE-2023-1232 CVE-2023-1233 CVE-2023-1234 CVE-2023-1235 CVE-2023-1236} + {CVE-2023-1213 CVE-2023-1214 CVE-2023-1215 CVE-2023-1216 CVE-2023-1217 CVE-2023-1218 CVE-2023-1219 CVE-2023-1220 CVE-2023-1221 CVE-2023-1222 CVE-2023-1223 CVE-2023-1224 CVE-2023-1225 CVE-2023-1226 CVE-2023-1227 CVE-2023-1228 CVE-2023-1229 CVE-2023-1230 CVE-2023-1231 CVE-2023-1232 CVE-2023-1233 CVE-2023-1234 CVE-2023-1235 CVE-2023-1236 CVE-2023-2314} [bullseye] - chromium 111.0.5563.64-1~deb11u1 [07 Mar 2023] DSA-5370-1 apr - security update {CVE-2022-24963} @@ -434,7 +434,7 @@ {CVE-2022-3094 CVE-2022-3736 CVE-2022-3924} [bullseye] - bind9 1:9.16.37-1~deb11u1 [26 Jan 2023] DSA-5328-1 chromium - security update - {CVE-2023-0471 CVE-2023-0472 CVE-2023-0473 CVE-2023-0474} + {CVE-2023-0471 CVE-2023-0472 CVE-2023-0473 CVE-2023-0474 CVE-2022-4926} [bullseye] - chromium 109.0.5414.119-1~deb11u1 [24 Jan 2023] DSA-5327-1 swift - security update {CVE-2022-47950} View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9ef7656bac0e43d555917b62e1eb893dd606cd4c -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9ef7656bac0e43d555917b62e1eb893dd606cd4c You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: e5d73056 by Moritz Muehlenhoff at 2023-07-19T10:00:39+02:00 new chromium issues - - - - - 2 changed files: - data/CVE/list - data/dsa-needed.txt Changes: = data/CVE/list = @@ -1,3 +1,36 @@ +CVE-2023-3740 + - chromium 114.0.5735.198-1 + [buster] - chromium (see DSA 5046) +CVE-2023-3738 + - chromium 114.0.5735.198-1 + [buster] - chromium (see DSA 5046) +CVE-2023-3737 + - chromium 114.0.5735.198-1 + [buster] - chromium (see DSA 5046) +CVE-2023-3736 + - chromium 114.0.5735.198-1 + [buster] - chromium (see DSA 5046) +CVE-2023-3735 + - chromium 114.0.5735.198-1 + [buster] - chromium (see DSA 5046) +CVE-2023-3734 + - chromium 114.0.5735.198-1 + [buster] - chromium (see DSA 5046) +CVE-2023-3733 + - chromium 114.0.5735.198-1 + [buster] - chromium (see DSA 5046) +CVE-2023-3732 + - chromium 114.0.5735.198-1 + [buster] - chromium (see DSA 5046) +CVE-2023-3730 + - chromium 114.0.5735.198-1 + [buster] - chromium (see DSA 5046) +CVE-2023-3728 + - chromium 114.0.5735.198-1 + [buster] - chromium (see DSA 5046) +CVE-2023-3727 + - chromium 114.0.5735.198-1 + [buster] - chromium (see DSA 5046) CVE-2023-3743 (Ap Page Builder, in versions lower than 1.7.8.2, could allow a remote ...) NOT-FOR-US: Ap Page Builder CVE-2023-38326 = data/dsa-needed.txt = @@ -14,6 +14,8 @@ If needed, specify the release by adding a slash after the name of the source pa -- aom/oldstable -- +chromium (jmm) +-- cjose -- cinder/oldstable View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e5d730561320490a3ac6f8e874a67dea9d63fd3a -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e5d730561320490a3ac6f8e874a67dea9d63fd3a You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] "new" chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 57597af6 by Moritz Muehlenhoff at 2023-03-13T09:36:03+01:00 new chromium issues - - - - - 2 changed files: - data/CVE/list - data/DSA/list Changes: = data/CVE/list = @@ -142007,7 +142007,9 @@ CVE-2021-30559 (Out of bounds write in ANGLE in Google Chrome prior to 91.0.4472 [buster] - chromium (see DSA 5046) [stretch] - chromium (see DSA 4562) CVE-2021-30558 (Insufficient policy enforcement in content security policy in Google C ...) - TODO: check + {DSA-5046-1} + - chromium 93.0.4577.82-1 (bug #990079) + [buster] - chromium (see DSA 5046) CVE-2021-30557 (Use after free in TabGroups in Google Chrome prior to 91.0.4472.114 al ...) - chromium 93.0.4577.82-1 (bug #990079) [buster] - chromium (see DSA 5046) @@ -166656,7 +166658,8 @@ CVE-2021-21201 (Use after free in permissions in Google Chrome prior to 90.0.443 - chromium 90.0.4430.72-1 (bug #987053) [stretch] - chromium (see DSA 4562) CVE-2021-21200 (Out of bounds read in WebUI Settings in Google Chrome prior to 89.0.43 ...) - TODO: check + {DSA-4886-1} + - chromium 89.0.4389.82-1 CVE-2021-21199 (Use after free in Aura in Google Chrome on Linux prior to 89.0.4389.11 ...) {DSA-4886-1} - chromium 89.0.4389.114-1 = data/DSA/list = @@ -1073,7 +1073,7 @@ [buster] - prosody 0.11.2-1+deb10u3 [bullseye] - prosody 0.11.9-2+deb11u1 [14 Jan 2022] DSA-5046-1 chromium - security update - {CVE-2021-4052 CVE-2021-4053 CVE-2021-4054 CVE-2021-4055 CVE-2021-4056 CVE-2021-4057 CVE-2021-4058 CVE-2021-4059 CVE-2021-4061 CVE-2021-4062 CVE-2021-4063 CVE-2021-4064 CVE-2021-4065 CVE-2021-4066 CVE-2021-4067 CVE-2021-4068 CVE-2021-4078 CVE-2021-4079 CVE-2021-4098 CVE-2021-4099 CVE-2021-4100 CVE-2021-4101 CVE-2021-4102 CVE-2021-37956 CVE-2021-37957 CVE-2021-37958 CVE-2021-37959 CVE-2021-37961 CVE-2021-37962 CVE-2021-37963 CVE-2021-37964 CVE-2021-37965 CVE-2021-37966 CVE-2021-37967 CVE-2021-37968 CVE-2021-37969 CVE-2021-37970 CVE-2021-37971 CVE-2021-37972 CVE-2021-37973 CVE-2021-37974 CVE-2021-37975 CVE-2021-37976 CVE-2021-37977 CVE-2021-37978 CVE-2021-37979 CVE-2021-37980 CVE-2021-37981 CVE-2021-37982 CVE-2021-37983 CVE-2021-37984 CVE-2021-37985 CVE-2021-37986 CVE-2021-37987 CVE-2021-37988 CVE-2021-37989 CVE-2021-37990 CVE-2021-37991 CVE-2021-37992 CVE-2021-37993 CVE-2021-37994 CVE-2021-37995 CVE-2021-37996 CVE-2021-37997 CVE-2021-37998 CVE-2021-37999 CVE-2021-38000 CVE-2021-38001 CVE-2021-38002 CVE-2021-38003 CVE-2021-38004 CVE-2021-38005 CVE-2021-38006 CVE-2021-38007 CVE-2021-38008 CVE-2021-38009 CVE-2021-38010 CVE-2021-38011 CVE-2021-38012 CVE-2021-38013 CVE-2021-38014 CVE-2021-38015 CVE-2021-38016 CVE-2021-38017 CVE-2021-38018 CVE-2021-38019 CVE-2021-38020 CVE-2021-38021 CVE-2021-38022 CVE-2022-0096 CVE-2022-0097 CVE-2022-0098 CVE-2022-0099 CVE-2022-0100 CVE-2022-0101 CVE-2022-0102 CVE-2022-0103 CVE-2022-0104 CVE-2022-0105 CVE-2022-0106 CVE-2022-0107 CVE-2022-0108 CVE-2022-0109 CVE-2022-0110 CVE-2022-0111 CVE-2022-0112 CVE-2022-0113 CVE-2022-0114 CVE-2022-0115 CVE-2022-0116 CVE-2022-0117 CVE-2022-0118 CVE-2022-0120} + {CVE-2021-4052 CVE-2021-4053 CVE-2021-4054 CVE-2021-4055 CVE-2021-4056 CVE-2021-4057 CVE-2021-4058 CVE-2021-4059 CVE-2021-4061 CVE-2021-4062 CVE-2021-4063 CVE-2021-4064 CVE-2021-4065 CVE-2021-4066 CVE-2021-4067 CVE-2021-4068 CVE-2021-4078 CVE-2021-4079 CVE-2021-4098 CVE-2021-4099 CVE-2021-4100 CVE-2021-4101 CVE-2021-4102 CVE-2021-37956 CVE-2021-37957 CVE-2021-37958 CVE-2021-37959 CVE-2021-37961 CVE-2021-37962 CVE-2021-37963 CVE-2021-37964 CVE-2021-37965 CVE-2021-37966 CVE-2021-37967 CVE-2021-37968 CVE-2021-37969 CVE-2021-37970 CVE-2021-37971 CVE-2021-37972 CVE-2021-37973 CVE-2021-37974 CVE-2021-37975 CVE-2021-37976 CVE-2021-37977 CVE-2021-37978 CVE-2021-37979 CVE-2021-37980 CVE-2021-37981 CVE-2021-37982 CVE-2021-37983 CVE-2021-37984 CVE-2021-37985 CVE-2021-37986 CVE-2021-37987 CVE-2021-37988 CVE-2021-37989 CVE-2021-37990 CVE-2021-37991 CVE-2021-37992 CVE-2021-37993 CVE-2021-37994 CVE-2021-37995 CVE-2021-37996 CVE-2021-37997 CVE-2021-37998 CVE-2021-37999 CVE-2021-38000 CVE-2021-38001 CVE-2021-38002 CVE-2021-38003 CVE-2021-38004 CVE-2021-38005 CVE-2021-38006 CVE-2021-38007 CVE-2021-38008 CVE-2021-38009 CVE-2021-38010 CVE-2021-38011 CVE-2021-38012 CVE-2021-38013 CVE-2021-38014 CVE-2021-38015 CVE-2021-38016 CVE-2021-38017 CVE-2021-38018 CVE-2021-38019 CVE-2021-38020 CVE-2021-38021 CVE-2021-38022 CVE-2022-0096 CVE-2022-0097 CVE-2022-0098 CVE-2022-0099 CVE-2022-0100 CVE-2022-0101 CVE-2022-0102 CVE-2022-0103 CVE-2022-0104 CVE-2022-0105 CVE-2022-0106 CVE-2022-0107 CVE-2022-0108 CVE-2022-0109 CVE-2022-0110 CVE-2022-0111 CVE-2022-0112
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 678b1173 by Moritz Mühlenhoff at 2022-08-16T23:47:57+02:00 new chromium issues - - - - - 2 changed files: - data/CVE/list - data/dsa-needed.txt Changes: = data/CVE/list = @@ -1,3 +1,33 @@ +CVE-2022-2861 + - chromium + [buster] - chromium (see DSA 5046) +CVE-2022-2860 + - chromium + [buster] - chromium (see DSA 5046) +CVE-2022-2859 + - chromium + [buster] - chromium (see DSA 5046) +CVE-2022-2858 + - chromium + [buster] - chromium (see DSA 5046) +CVE-2022-2857 + - chromium + [buster] - chromium (see DSA 5046) +CVE-2022-2856 + - chromium + [buster] - chromium (see DSA 5046) +CVE-2022-2855 + - chromium + [buster] - chromium (see DSA 5046) +CVE-2022-2854 + - chromium + [buster] - chromium (see DSA 5046) +CVE-2022-2853 + - chromium + [buster] - chromium (see DSA 5046) +CVE-2022-2852 + - chromium + [buster] - chromium (see DSA 5046) CVE-2022-38381 RESERVED CVE-2022-38380 = data/dsa-needed.txt = @@ -16,6 +16,8 @@ asterisk (apo) -- freecad (aron) -- +chromium (jmm) +-- gdk-pixbuf (carnil) -- kicad (jmm) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/678b11738f65dcab44166b5988efa0fe6858e9a4 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/678b11738f65dcab44166b5988efa0fe6858e9a4 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 6a565fff by Moritz Mühlenhoff at 2022-08-02T23:44:02+02:00 new chromium issues - - - - - 2 changed files: - data/CVE/list - data/dsa-needed.txt Changes: = data/CVE/list = @@ -174,48 +174,92 @@ CVE-2022-2625 RESERVED CVE-2022-2624 RESERVED + - chromium + [buster] - chromium (see DSA 5046) CVE-2022-2623 RESERVED + - chromium + [buster] - chromium (see DSA 5046) CVE-2022-2622 RESERVED + - chromium + [buster] - chromium (see DSA 5046) CVE-2022-2621 RESERVED + - chromium + [buster] - chromium (see DSA 5046) CVE-2022-2620 RESERVED + - chromium + [buster] - chromium (see DSA 5046) CVE-2022-2619 RESERVED + - chromium + [buster] - chromium (see DSA 5046) CVE-2022-2618 RESERVED + - chromium + [buster] - chromium (see DSA 5046) CVE-2022-2617 RESERVED + - chromium + [buster] - chromium (see DSA 5046) CVE-2022-2616 RESERVED + - chromium + [buster] - chromium (see DSA 5046) CVE-2022-2615 RESERVED + - chromium + [buster] - chromium (see DSA 5046) CVE-2022-2614 RESERVED + - chromium + [buster] - chromium (see DSA 5046) CVE-2022-2613 RESERVED + - chromium + [buster] - chromium (see DSA 5046) CVE-2022-2612 RESERVED + - chromium + [buster] - chromium (see DSA 5046) CVE-2022-2611 RESERVED + - chromium + [buster] - chromium (see DSA 5046) CVE-2022-2610 RESERVED + - chromium + [buster] - chromium (see DSA 5046) CVE-2022-2609 RESERVED + - chromium + [buster] - chromium (see DSA 5046) CVE-2022-2608 RESERVED + - chromium + [buster] - chromium (see DSA 5046) CVE-2022-2607 RESERVED + - chromium + [buster] - chromium (see DSA 5046) CVE-2022-2606 RESERVED + - chromium + [buster] - chromium (see DSA 5046) CVE-2022-2605 RESERVED + - chromium + [buster] - chromium (see DSA 5046) CVE-2022-2604 RESERVED + - chromium + [buster] - chromium (see DSA 5046) CVE-2022-2603 RESERVED + - chromium + [buster] - chromium (see DSA 5046) CVE-2022-2602 RESERVED CVE-2021-46831 = data/dsa-needed.txt = @@ -14,6 +14,8 @@ If needed, specify the release by adding a slash after the name of the source pa -- asterisk -- +chromium +-- epiphany-browser -- freecad (aron) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6a565fffe8066c0fece4899030b680d4a7c8e6ff -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6a565fffe8066c0fece4899030b680d4a7c8e6ff You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 8fecb94f by Moritz Muehlenhoff at 2022-06-09T22:55:53+02:00 new chromium issues - - - - - 2 changed files: - data/CVE/list - data/dsa-needed.txt Changes: = data/CVE/list = @@ -610,14 +610,26 @@ CVE-2022-2012 RESERVED CVE-2022-2011 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-2010 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-2009 RESERVED CVE-2022-2008 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-2007 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-2006 RESERVED CVE-2022-2005 = data/dsa-needed.txt = @@ -16,6 +16,8 @@ asterisk/oldstable -- cacti -- +chromium (jmm) +-- containerd (jmm) -- curl View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8fecb94f51188ca0ed6b0517a1400e82fd0de459 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8fecb94f51188ca0ed6b0517a1400e82fd0de459 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 01f727d0 by Moritz Muehlenhoff at 2022-05-24T23:14:34+02:00 new chromium issues - - - - - 2 changed files: - data/CVE/list - data/dsa-needed.txt Changes: = data/CVE/list = @@ -40,52 +40,124 @@ CVE-2022-31599 RESERVED CVE-2022-1876 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-1875 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-1874 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-1873 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-1872 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-1871 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-1870 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-1869 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-1868 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-1867 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-1866 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-1865 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-1864 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-1863 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-1862 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-1861 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-1860 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-1859 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-1858 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-1857 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-1856 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-1855 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-1854 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-1853 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-1852 RESERVED CVE-2022-1851 = data/dsa-needed.txt = @@ -16,15 +16,14 @@ asterisk/oldstable -- cacti -- +chromium (jmm) +-- cifs-utils (carnil) -- curl -- epiphany-browser -- -firefox-esr - Maintainer uploaded fixed packages --- freecad (aron) -- libpgjava (apo) @@ -37,6 +36,8 @@ ndpi/oldstable -- nodejs (jmm) -- +puma/oldstable +-- rpki-client/stable new 7.6 release required libretls, which isn't in Bullseye -- @@ -53,7 +54,7 @@ smarty3 (apo) -- sox -- -thunderbird +thunderbird (jmm) -- trafficserver (jmm) wait until status for CVE-2021-38161 is clarified (upstream patch got reverted) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/01f727d0a93dc1e9f73733c4a5236109f3bb6c9c -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/01f727d0a93dc1e9f73733c4a5236109f3bb6c9c You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: d4053840 by Moritz Muehlenhoff at 2022-03-15T23:10:50+01:00 new chromium issues - - - - - 2 changed files: - data/CVE/list - data/dsa-needed.txt Changes: = data/CVE/list = @@ -102,24 +102,54 @@ CVE-2022-25347 RESERVED CVE-2022-0980 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-0979 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-0978 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-0977 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-0976 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-0975 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-0974 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-0973 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-0972 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2022-0971 RESERVED + - chromium + [buster] - chromium (see DSA 5046) + [stretch] - chromium (see DSA 4562) CVE-2021-46738 RESERVED CVE-2021-46737 = data/dsa-needed.txt = @@ -14,6 +14,8 @@ If needed, specify the release by adding a slash after the name of the source pa -- asterisk/oldstable -- +chromium +-- containerd (jmm) -- condor/oldstable View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d4053840f8eadc452771cfce324b1e2dc65c9e1e -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d4053840f8eadc452771cfce324b1e2dc65c9e1e You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: bdf0b8f1 by Moritz Muehlenhoff at 2021-10-02T20:33:47+02:00 new chromium issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -9068,10 +9068,16 @@ CVE-2021-37977 RESERVED CVE-2021-37976 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-37975 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-37974 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-37973 RESERVED - chromium View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bdf0b8f167ac8f6a79dcdd488b850f64a2e2baf9 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bdf0b8f167ac8f6a79dcdd488b850f64a2e2baf9 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 41d1d487 by Moritz Muehlenhoff at 2021-09-14T14:42:55+02:00 new chromium issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -24602,22 +24602,40 @@ CVE-2021-30634 RESERVED CVE-2021-30633 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30632 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30631 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30630 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30629 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30628 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30627 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30626 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30625 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30624 (Use after free in Autofill in Google Chrome prior to 93.0.4577.63 allo ...) - chromium [stretch] - chromium (see DSA 4562) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/41d1d487ded78be016e0aa5961212f7f850f2bf4 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/41d1d487ded78be016e0aa5961212f7f850f2bf4 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: e25d4434 by Moritz Muehlenhoff at 2021-08-19T13:18:10+02:00 new chromium issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -20363,18 +20363,32 @@ CVE-2021-30605 RESERVED CVE-2021-30604 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30603 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30602 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30601 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30600 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30599 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30598 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30597 RESERVED - chromium View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e25d4434a32b7d23cd2d6cc7bd62acef67827f4c -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e25d4434a32b7d23cd2d6cc7bd62acef67827f4c You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: bb226d46 by Moritz Muehlenhoff at 2021-07-21T20:28:33+02:00 new chromium issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -15253,54 +15253,102 @@ CVE-2021-30590 RESERVED CVE-2021-30589 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30588 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30587 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30586 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30585 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30584 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30583 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30582 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30581 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30580 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30579 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30578 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30577 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30576 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30575 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30574 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30573 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30572 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30571 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30570 RESERVED CVE-2021-30569 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30568 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30567 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30566 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30565 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30564 RESERVED - chromium View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bb226d465d51fa939d61d9ddee8bb78540b9c85a -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bb226d465d51fa939d61d9ddee8bb78540b9c85a You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 7d83690e by Moritz Muehlenhoff at 2021-06-17T22:33:05+02:00 new chromium issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -9901,12 +9901,20 @@ CVE-2021-30558 RESERVED CVE-2021-30557 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30556 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30555 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30554 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30553 (Use after free in Network service in Google Chrome prior to 91.0.4472. ...) - chromium [stretch] - chromium (see DSA 4562) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7d83690ec1474b9208ef92d22aa9b7e9eff1df4a -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7d83690ec1474b9208ef92d22aa9b7e9eff1df4a You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: c5663da6 by Moritz Muehlenhoff at 2021-05-26T19:26:10+02:00 new chromium issues - - - - - 2 changed files: - data/CVE/list - data/dsa-needed.txt Changes: = data/CVE/list = @@ -6958,44 +6958,85 @@ CVE-2021-30541 RESERVED CVE-2021-30540 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30539 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30538 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30537 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30536 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30535 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) + TODO: check src:icu CVE-2021-30534 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30533 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30532 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30531 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30530 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30529 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30528 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30527 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30526 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30525 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30524 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30523 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30522 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30521 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30520 RESERVED {DSA-4917-1} = data/dsa-needed.txt = @@ -14,6 +14,8 @@ If needed, specify the release by adding a slash after the name of the source pa -- condor -- +chromium +-- djvulibre -- linux (carnil) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c5663da6a21879d32e7ea23608e541b3845fdae3 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c5663da6a21879d32e7ea23608e541b3845fdae3 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 31e1bd46 by Moritz Muehlenhoff at 2021-05-11T21:06:51+02:00 new chromium issues - - - - - 2 changed files: - data/CVE/list - data/dsa-needed.txt Changes: = data/CVE/list = @@ -4481,34 +4481,64 @@ CVE-2021-30521 RESERVED CVE-2021-30520 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30519 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30518 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30517 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30516 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30515 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30514 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30513 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30512 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30511 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30510 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30509 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30508 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30507 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30506 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-30505 RESERVED CVE-2021-30504 = data/dsa-needed.txt = @@ -11,6 +11,8 @@ To pick an issue, simply add your uid behind it. If needed, specify the release by adding a slash after the name of the source package. +-- +chromium-browser -- condor -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/31e1bd4609fa1941a751ad7d19866f406610192f -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/31e1bd4609fa1941a751ad7d19866f406610192f You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 2fce3b5e by Moritz Muehlenhoff at 2021-04-15T13:23:15+02:00 new chromium issues - - - - - 2 changed files: - data/CVE/list - data/dsa-needed.txt Changes: = data/CVE/list = @@ -24186,50 +24186,88 @@ CVE-2021-21222 RESERVED CVE-2021-21221 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21220 RESERVED - chromium [stretch] - chromium (see DSA 4562) CVE-2021-21219 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21218 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21217 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21216 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21215 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21214 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21213 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21212 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21211 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21210 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21209 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21208 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21207 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21206 RESERVED - chromium [stretch] - chromium (see DSA 4562) CVE-2021-21205 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21204 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21203 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21202 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21201 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21200 RESERVED CVE-2021-21199 (Use after free in Aura in Google Chrome on Linux prior to 89.0.4389.11 ...) = data/dsa-needed.txt = @@ -11,6 +11,8 @@ To pick an issue, simply add your uid behind it. If needed, specify the release by adding a slash after the name of the source package. +-- +chromium -- condor -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2fce3b5eb473cb43f7d75fc011c0e7097e327d8a -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2fce3b5eb473cb43f7d75fc011c0e7097e327d8a You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: d18f5f8c by Moritz Muehlenhoff at 2021-03-31T20:46:58+02:00 new chromium issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -20403,16 +20403,28 @@ CVE-2021-21200 RESERVED CVE-2021-21199 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21198 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21197 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21196 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21195 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21194 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21193 (Use after free in Blink in Google Chrome prior to 89.0.4389.90 allowed ...) - chromium 89.0.4389.90-1 (bug #985142) [stretch] - chromium (see DSA 4562) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d18f5f8cbaeff675efffc36dd87db56e2e30708a -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d18f5f8cbaeff675efffc36dd87db56e2e30708a You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 648c74f4 by Moritz Muehlenhoff at 2021-03-12T23:15:54+01:00 new chromium issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -17304,10 +17304,16 @@ CVE-2021-21194 RESERVED CVE-2021-21193 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21192 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21191 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21190 (Uninitialized data in PDFium in Google Chrome prior to 89.0.4389.72 al ...) - chromium 89.0.4389.82-1 [stretch] - chromium (see DSA 4562) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/648c74f48407654a7e06e83b9f9e1cfc9f3211da -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/648c74f48407654a7e06e83b9f9e1cfc9f3211da You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: fcbfc847 by Moritz Muehlenhoff at 2021-03-02T23:12:59+01:00 new chromium issues - - - - - 2 changed files: - data/CVE/list - data/dsa-needed.txt Changes: = data/CVE/list = @@ -16238,70 +16238,134 @@ CVE-2021-21191 RESERVED CVE-2021-21190 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21189 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21188 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21187 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21186 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21185 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21184 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21183 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21182 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21181 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21180 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21179 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21178 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21177 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21176 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21175 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21174 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21173 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21172 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21171 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21170 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21169 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21168 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21167 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21166 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21165 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21164 RESERVED + - chromium (MacOS specific) CVE-2021-21163 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21162 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21161 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21160 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21159 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21158 RESERVED + - chromium (MacOS specific) CVE-2021-21157 (Use after free in Web Sockets in Google Chrome on Linux prior to 88.0. ...) {DSA-4858-1} - chromium 88.0.4324.182-1 = data/dsa-needed.txt = @@ -15,6 +15,8 @@ If needed, specify the release by adding a slash after the name of the source pa knot-resolver Santiago Ruano Rincón proposed a debdiff for review -- +chromium-browser +-- linux (carnil) Wait until more issues have piled up, though try to regulary rebase for point releases to more recent v4.19.y versions. View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fcbfc8472c75bbf3fe257128f2962d9a4b62cac3 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fcbfc8472c75bbf3fe257128f2962d9a4b62cac3 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 816e8cb2 by Moritz Muehlenhoff at 2021-01-20T10:12:56+01:00 new chromium issues - - - - - 2 changed files: - data/CVE/list - data/dsa-needed.txt Changes: = data/CVE/list = @@ -10583,54 +10583,104 @@ CVE-2021-21142 RESERVED CVE-2021-21141 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21140 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21139 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21138 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21137 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21136 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21135 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21134 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21133 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21132 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21131 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21130 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21129 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21128 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21127 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21126 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21125 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21124 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21123 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21122 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21121 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21120 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21119 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21118 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21117 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2021-21116 (Heap buffer overflow in audio in Google Chrome prior to 87.0.4280.141 ...) {DSA-4832-1} - chromium 87.0.4280.141-0.1 (bug #979533) = data/dsa-needed.txt = @@ -14,6 +14,8 @@ If needed, specify the release by adding a slash after the name of the source pa -- ansible -- +chromium +-- knot-resolver Santiago Ruano Rincón proposed a debdiff for review -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/816e8cb29b182c1de123c95eb46b6c6c4c337118 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/816e8cb29b182c1de123c95eb46b6c6c4c337118 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: acf7ff7a by Moritz Muehlenhoff at 2020-11-18T10:19:30+01:00 new chromium issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -30201,42 +30201,80 @@ CVE-2020-16037 RESERVED CVE-2020-16036 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-16035 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-16034 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-16033 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-16032 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-16031 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-16030 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-16029 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-16028 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-16027 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-16026 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-16025 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-16024 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-16023 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-16022 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-16021 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-16020 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-16019 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-16018 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-16017 RESERVED - chromium @@ -30247,8 +30285,12 @@ CVE-2020-16016 [stretch] - chromium (see DSA 4562) CVE-2020-16015 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-16014 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-16013 RESERVED - chromium @@ -30258,6 +30300,8 @@ CVE-2020-16012 - firefox 83.0-1 - firefox-esr 78.5.0esr-1 - thunderbird + - chromium + [stretch] - chromium (see DSA 4562) NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-50/#CVE-2020-16012 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-51/#CVE-2020-16012 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-52/#CVE-2020-16012 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/acf7ff7aaa578416a061b6f2b5066fb52533dfe9 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/acf7ff7aaa578416a061b6f2b5066fb52533dfe9 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 83570e91 by Moritz Muehlenhoff at 2020-11-12T09:21:37+01:00 new chromium issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -27927,6 +27927,8 @@ CVE-2020-16018 RESERVED CVE-2020-16017 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-16016 RESERVED - chromium @@ -27937,6 +27939,8 @@ CVE-2020-16014 RESERVED CVE-2020-16013 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-16012 RESERVED CVE-2020-16011 (Heap buffer overflow in UI in Google Chrome on Windows prior to 86.0.4 ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/83570e91524502753f62b757ac63da207d1c7273 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/83570e91524502753f62b757ac63da207d1c7273 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 2a5eefa0 by Moritz Muehlenhoff at 2020-11-03T13:00:46+01:00 new chromium issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -25880,21 +25880,27 @@ CVE-2020-16013 CVE-2020-16012 RESERVED CVE-2020-16011 (Heap buffer overflow in UI in Google Chrome on Windows prior to 86.0.4 ...) - TODO: check + - chromium (Windows-specific) CVE-2020-16010 (Heap buffer overflow in UI in Google Chrome on Android prior to 86.0.4 ...) - TODO: check + - chromium (Android-specific) CVE-2020-16009 (Inappropriate implementation in V8 in Google Chrome prior to 86.0.4240 ...) - TODO: check + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-16008 (Stack buffer overflow in WebRTC in Google Chrome prior to 86.0.4240.18 ...) - TODO: check + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-16007 (Insufficient data validation in installer in Google Chrome prior to 86 ...) - TODO: check + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-16006 (Inappropriate implementation in V8 in Google Chrome prior to 86.0.4240 ...) - TODO: check + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-16005 (Insufficient policy enforcement in ANGLE in Google Chrome prior to 86. ...) - TODO: check + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-16004 (Use after free in user interface in Google Chrome prior to 86.0.4240.1 ...) - TODO: check + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-16003 (Use after free in printing in Google Chrome prior to 86.0.4240.111 all ...) - chromium [stretch] - chromium (see DSA 4562) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2a5eefa01cd9f8261c6397f123a2a3684c9927fb -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2a5eefa01cd9f8261c6397f123a2a3684c9927fb You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 6418870f by Moritz Muehlenhoff at 2020-10-21T15:59:58+02:00 new chromium issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -23973,12 +23973,20 @@ CVE-2020-16004 RESERVED CVE-2020-16003 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-16002 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-16001 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-16000 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-15999 [heap buffer overflow] RESERVED - freetype (bug #972586) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6418870f26f742b566dd24d27bb86c1fd51a80d4 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6418870f26f742b566dd24d27bb86c1fd51a80d4 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 63635702 by Moritz Muehlenhoff at 2020-10-07T11:51:24+02:00 new chromium issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -22318,56 +22318,108 @@ CVE-2020-15993 RESERVED CVE-2020-15992 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-15991 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-15990 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-15989 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-15988 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-15987 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-15986 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-15985 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-15984 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-15983 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-15982 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-15981 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-15980 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-15979 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-15978 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-15977 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-15976 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-15975 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-15974 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-15973 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-15972 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-15971 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-15970 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-15969 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-15968 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-15967 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-15966 (Insufficient policy enforcement in extensions in Google Chrome prior t ...) - chromium [stretch] - chromium (see DSA 4562) @@ -47938,6 +47990,8 @@ CVE-2020-6558 (Insufficient policy enforcement in iOSWeb in Google Chrome on iOS [stretch] - chromium (see DSA 4562) CVE-2020-6557 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6556 (Heap buffer overflow in SwiftShader in Google Chrome prior to 84.0.414 ...) - chromium [stretch] - chromium (see DSA 4562) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/636357023fc49fea9601cf9c1065470ba96bbd84 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/636357023fc49fea9601cf9c1065470ba96bbd84 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: f3f08b3f by Moritz Muehlenhoff at 2020-09-09T09:42:00+02:00 new chromium issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -18815,6 +18815,8 @@ CVE-2020-15960 RESERVED CVE-2020-15959 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-15958 RESERVED CVE-2020-15957 (An issue was discovered in DP3T-Backend-SDK before 1.1.1 for Decentral ...) @@ -44172,12 +44174,20 @@ CVE-2020-6577 RESERVED CVE-2020-6576 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6575 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6574 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6573 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6572 RESERVED CVE-2020-6571 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f3f08b3fa0e5ca288652051db0b4690bf3952c4d -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f3f08b3fa0e5ca288652051db0b4690bf3952c4d You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: c73dd338 by Moritz Muehlenhoff at 2020-08-26T08:26:47+02:00 new chromium issues - - - - - 2 changed files: - data/CVE/list - data/dsa-needed.txt Changes: = data/CVE/list = @@ -42708,32 +42708,60 @@ CVE-2020-6572 RESERVED CVE-2020-6571 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6570 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6569 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6568 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6567 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6566 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6565 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6564 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6563 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6562 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6561 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6560 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6559 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6558 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6557 RESERVED CVE-2020-6556 = data/dsa-needed.txt = @@ -21,7 +21,7 @@ chromium -- curl (ghedo) -- -firefox-esr +firefox-esr (jmm) -- knot-resolver Santiago Ruano Rincón proposed a debdiff for review View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c73dd338514922fe244331f5711384e3cd6c757b -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c73dd338514922fe244331f5711384e3cd6c757b You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 29744027 by Moritz Muehlenhoff at 2020-07-28T10:35:55+02:00 new chromium issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -24970,14 +24970,24 @@ CVE-2020-6542 RESERVED CVE-2020-6541 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6540 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6539 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6538 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6537 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6536 (Incorrect security UI in PWAs in Google Chrome prior to 84.0.4147.89 a ...) [experimental] - chromium 84.0.4147.89-1 - chromium @@ -24996,6 +25006,8 @@ CVE-2020-6533 (Type Confusion in V8 in Google Chrome prior to 84.0.4147.89 allow [stretch] - chromium (see DSA 4562) CVE-2020-6532 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6531 (Side-channel information leakage in scroll to text in Google Chrome pr ...) [experimental] - chromium 84.0.4147.89-1 - chromium View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/297440273b40092da0986046e4d7fa9ae28e6cff -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/297440273b40092da0986046e4d7fa9ae28e6cff You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 78756272 by Moritz Muehlenhoff at 2020-07-15T12:53:50+02:00 new chromium issues - - - - - 2 changed files: - data/CVE/list - data/dsa-needed.txt Changes: = data/CVE/list = @@ -24109,58 +24109,110 @@ CVE-2020-6537 RESERVED CVE-2020-6536 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6535 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6534 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6533 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6532 RESERVED CVE-2020-6531 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6530 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6529 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6528 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6527 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6526 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6525 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6524 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6523 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6522 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6521 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6520 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6519 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6518 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6517 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6516 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6515 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6514 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6513 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6512 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6511 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6510 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6509 RESERVED {DSA-4714-1} = data/dsa-needed.txt = @@ -11,6 +11,8 @@ To pick an issue, simply add your uid behind it. If needed, specify the release by adding a slash after the name of the source package. +-- +chromium -- curl (ghedo) -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/78756272bc7c3e50cd3a3b77f93e45293196c8fb -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/78756272bc7c3e50cd3a3b77f93e45293196c8fb You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 51edc334 by Moritz Muehlenhoff at 2020-06-16T11:47:11+02:00 new chromium issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -19967,10 +19967,16 @@ CVE-2020-6508 RESERVED CVE-2020-6507 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6506 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6505 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6504 (Insufficient policy enforcement in notifications in Google Chrome prio ...) {DSA-4500-1} - chromium 74.0.3729.108-1 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/51edc334ea0486952b177836a3a6337014f7e888 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/51edc334ea0486952b177836a3a6337014f7e888 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 529a60a4 by Moritz Muehlenhoff at 2020-06-05T23:38:20+02:00 new chromium issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -19142,17 +19142,26 @@ CVE-2020-6500 (Inappropriate implementation in interstitials in Google Chrome pr CVE-2020-6499 (Inappropriate implementation in AppCache in Google Chrome prior to 80. ...) TODO: check CVE-2020-6498 (Incorrect implementation in user interface in Google Chrome on iOS pri ...) - TODO: check + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6497 (Insufficient policy enforcement in Omnibox in Google Chrome on iOS pri ...) - TODO: check + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6496 (Use after free in payments in Google Chrome on MacOS prior to 83.0.410 ...) + - chromium + [stretch] - chromium (see DSA 4562) TODO: check CVE-2020-6495 (Insufficient policy enforcement in developer tools in Google Chrome pr ...) + - chromium + [stretch] - chromium (see DSA 4562) TODO: check CVE-2020-6494 (Incorrect security UI in payments in Google Chrome on Android prior to ...) + - chromium + [stretch] - chromium (see DSA 4562) TODO: check CVE-2020-6493 (Use after free in WebAuthentication in Google Chrome prior to 83.0.410 ...) - TODO: check + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6492 RESERVED CVE-2020-6491 (Insufficient data validation in site information in Google Chrome prio ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/529a60a44b3e4be2277152cfafe644b4614fba31 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/529a60a44b3e4be2277152cfafe644b4614fba31 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 7c90a322 by Moritz Muehlenhoff at 2020-05-05T23:38:30+02:00 new chromium issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -14972,6 +14972,8 @@ CVE-2020-6831 RESERVED - firefox - firefox-esr + - chromium + [stretch] - chromium (see DSA 4562) NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-16/#CVE-2020-6831 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-17/#CVE-2020-6831 CVE-2020-6830 @@ -15891,6 +15893,8 @@ CVE-2020-6465 RESERVED CVE-2020-6464 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6463 RESERVED CVE-2020-6462 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7c90a322b23620d054025901a3402d9207ab9e8b -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7c90a322b23620d054025901a3402d9207ab9e8b You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: b83eea2b by Moritz Muehlenhoff at 2020-04-28T12:21:26+02:00 new chromium issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -14911,8 +14911,12 @@ CVE-2020-6463 RESERVED CVE-2020-6462 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6461 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6460 RESERVED - chromium View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b83eea2b2487f6bca49beedff62c6e4e0b3ea40b -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b83eea2b2487f6bca49beedff62c6e4e0b3ea40b You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 58fff327 by Moritz Muehlenhoff at 2020-04-22T10:40:23+02:00 new chromium issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -13,7 +13,7 @@ CVE-2020-12053 CVE-2020-12052 RESERVED CVE-2020-12051 (The CentralAuth extension through REL1_34 for MediaWiki allows remote ...) - TODO: check + NOT-FOR-US: MediaWiki extension CVE-2020-12050 RESERVED CVE-2020-12049 @@ -14306,10 +14306,16 @@ CVE-2020-6461 RESERVED CVE-2020-6460 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6459 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6458 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6457 RESERVED - chromium View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/58fff327cad564300e6709056014b9c122e678b3 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/58fff327cad564300e6709056014b9c122e678b3 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 9746c794 by Moritz Muehlenhoff at 2020-04-07T23:00:52+02:00 new chromium issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -12298,10 +12298,16 @@ CVE-2020-6457 RESERVED CVE-2020-6456 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6455 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6454 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6453 RESERVED CVE-2020-6452 @@ -12322,42 +12328,80 @@ CVE-2020-6449 (Use after free in audio in Google Chrome prior to 80.0.3987.149 a [stretch] - chromium (see DSA 4562) CVE-2020-6448 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6447 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6446 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6445 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6444 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6443 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6442 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6441 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6440 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6439 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6438 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6437 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6436 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6435 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6434 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6433 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6432 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6431 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6430 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6429 (Use after free in audio in Google Chrome prior to 80.0.3987.149 allowe ...) {DSA-4645-1} - chromium 80.0.3987.149-1 @@ -12384,6 +12428,8 @@ CVE-2020-6424 (Use after free in media in Google Chrome prior to 80.0.3987.149 a [stretch] - chromium (see DSA 4562) CVE-2020-6423 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6422 (Use after free in WebGL in Google Chrome prior to 80.0.3987.149 allowe ...) {DSA-4645-1} - chromium 80.0.3987.149-1 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9746c794c04ce58c90bb8f5cb177a8be64558feb -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9746c794c04ce58c90bb8f5cb177a8be64558feb You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: fc723a0f by Moritz Muehlenhoff at 2020-03-19T08:28:06+01:00 new chromium issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -1051,12 +1051,13 @@ CVE-2019-20503 (usrsctp before 2019-12-20 has out-of-bounds reads in sctp_load_a - firefox 74.0-1 - firefox-esr 68.6.0esr-1 - thunderbird 1:68.6.0-1 + - chromium + [stretch] - chromium (see DSA 4562) NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-10/#CVE-2019-20503 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-09/#CVE-2019-20503 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-08/#CVE-2019-20503 NOTE: https://bugs.chromium.org/p/project-zero/issues/detail?id=1992 NOTE: https://github.com/sctplab/usrsctp/commit/790a7a2555aefb392a5a69923f1e9d17b4968467 - TODO: check, other sources thunderbird and chromium embed the library CVE-2020-10187 RESERVED CVE-2020-10186 @@ -9605,6 +9606,8 @@ CVE-2020-6450 RESERVED CVE-2020-6449 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6448 RESERVED CVE-2020-6447 @@ -9645,20 +9648,34 @@ CVE-2020-6430 RESERVED CVE-2020-6429 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6428 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6427 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6426 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6425 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6424 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6423 RESERVED CVE-2020-6422 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6421 RESERVED CVE-2020-6420 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fc723a0fefa5a5b78ca621ef67cd4e34e5d8ce26 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fc723a0fefa5a5b78ca621ef67cd4e34e5d8ce26 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 025af21c by Moritz Muehlenhoff at 2020-02-05T20:46:50+01:00 new chromium issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -4838,78 +4838,146 @@ CVE-2020-6418 RESERVED CVE-2020-6417 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6416 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6415 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6414 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6413 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6412 + - chromium + [stretch] - chromium (see DSA 4562) RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6411 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6410 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6409 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6408 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6407 RESERVED CVE-2020-6406 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6405 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6404 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6403 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6402 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6401 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6400 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6399 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6398 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6397 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6396 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6395 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6394 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6393 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6392 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6391 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6390 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6389 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6388 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6387 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6386 RESERVED CVE-2020-6385 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6384 RESERVED CVE-2020-6383 RESERVED CVE-2020-6382 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6381 RESERVED + - chromium + [stretch] - chromium (see DSA 4562) CVE-2020-6380 RESERVED {DSA-4606-1} @@ -10981,6 +11049,8 @@ CVE-2019-19927 (In the Linux kernel 5.0.0-rc7 (as distributed in ubuntu/linux.gi CVE-2019-19926 (multiSelect in select.c in SQLite 3.30.1 mishandles certain errors dur ...) - sqlite3 (Incomplete fix for CVE-2019-19880 not applied) NOTE: https://github.com/sqlite/sqlite/commit/8428b3b437569338a9d1e10c4cd8154acbe33089 + - chromium + [stretch] - chromium (see DSA 4562) CVE-2019-19925 (zipfileUpdate in ext/misc/zipfile.c in SQLite 3.30.1 mishandles a NULL ...) - sqlite3 3.30.1+fossil191229-1 [buster] - sqlite3 (Minor issue) @@ -10998,6 +11068,8 @@ CVE-2019-19923 (flattenSubquery in select.c in SQLite 3.30.1 mishandles certain [buster] - sqlite3 (Minor issue) [stretch] - sqlite3 (Vulnerable code introduced later) [jessie] - sqlite3 (Vulnerable code introduced later) + - chromium + [stretch] - chromium (see DSA 4562) NOTE: https://github.com/sqlite/sqlite/commit/396afe6f6aa90a31303c183e11b2b2d4b7956b35 CVE-2019-19922 (kernel/sched/fair.c in the Linux kernel before 5.3.9, when cpu.cfs_quo ...) {DLA-2068-1} @@
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: ccc2b65f by Moritz Muehlenhoff at 2019-11-19T13:53:19Z new chromium issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -18129,8 +18129,10 @@ CVE-2019-13725 RESERVED CVE-2019-13724 RESERVED + - chromium CVE-2019-13723 RESERVED + - chromium CVE-2019-13722 RESERVED CVE-2019-13721 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ccc2b65fa3db78675795faf2b4c6dcc6d4b82172 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ccc2b65fa3db78675795faf2b4c6dcc6d4b82172 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 17b0df10 by Moritz Muehlenhoff at 2019-10-23T16:23:29Z new chromium issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -6944,6 +6944,7 @@ CVE-2019-15903 (In libexpat before 2.2.8, crafted XML input could fool the parse - expat 2.2.7-2 (bug #939394) - firefox 70.0-1 - firefox-esr 68.2.0esr-1 + - chromium NOTE: https://github.com/libexpat/libexpat/commit/c20b758c332d9a13afbbb276d30db1d183a85d43 NOTE: https://github.com/libexpat/libexpat/issues/317 NOTE: https://github.com/libexpat/libexpat/pull/318 @@ -13695,46 +13696,66 @@ CVE-2019-13720 RESERVED CVE-2019-13719 RESERVED + - chromium CVE-2019-13718 RESERVED + - chromium CVE-2019-13717 RESERVED + - chromium CVE-2019-13716 RESERVED + - chromium CVE-2019-13715 RESERVED + - chromium CVE-2019-13714 RESERVED + - chromium CVE-2019-13713 RESERVED + - chromium CVE-2019-13712 RESERVED CVE-2019-13711 RESERVED + - chromium CVE-2019-13710 RESERVED + - chromium CVE-2019-13709 RESERVED + - chromium CVE-2019-13708 RESERVED + - chromium CVE-2019-13707 RESERVED + - chromium CVE-2019-13706 RESERVED + - chromium CVE-2019-13705 RESERVED + - chromium CVE-2019-13704 RESERVED + - chromium CVE-2019-13703 RESERVED + - chromium CVE-2019-13702 RESERVED + - chromium CVE-2019-13701 RESERVED + - chromium CVE-2019-13700 RESERVED + - chromium CVE-2019-13699 RESERVED + - chromium CVE-2019-13698 RESERVED CVE-2019-13697 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/17b0df105434bc112e1388dd63f3a303f9cbb57f -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/17b0df105434bc112e1388dd63f3a303f9cbb57f You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: dce8b500 by Moritz Muehlenhoff at 2019-10-16T21:36:37Z new chromium issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -11375,14 +11375,19 @@ CVE-2019-13698 RESERVED CVE-2019-13697 RESERVED + - chromium CVE-2019-13696 RESERVED + - chromium CVE-2019-13695 RESERVED + - chromium CVE-2019-13694 RESERVED + - chromium CVE-2019-13693 RESERVED + - chromium CVE-2019-13692 RESERVED - chromium View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/dce8b500ad8ad210a1127c6d280ea4f21d6169cb -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/dce8b500ad8ad210a1127c6d280ea4f21d6169cb You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 21dd1eca by Moritz Muehlenhoff at 2019-09-27T22:00:19Z new chromium issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -6045,7 +6045,9 @@ CVE-2019-14809 (net/url in Go before 1.11.13 and 1.12.x before 1.12.8 mishandles - golang-1.12 1.12.8-1 - golang-1.11 1.11.13-1 - golang-1.8 + [stretch] - golang-1.8 (Minor issue) - golang-1.7 + [stretch] - golang-1.7 (Minor issue) - golang [jessie] - golang (Fix too invasive to backport, url.go file in jessie too far behind upstream) NOTE: Issue: https://github.com/golang/go/issues/29098 @@ -9411,8 +9413,10 @@ CVE-2019-13693 RESERVED CVE-2019-13692 RESERVED + - chromium CVE-2019-13691 RESERVED + - chromium CVE-2019-13690 RESERVED CVE-2019-13689 @@ -9433,54 +9437,78 @@ CVE-2019-13684 RESERVED CVE-2019-13683 RESERVED + - chromium CVE-2019-13682 RESERVED + - chromium CVE-2019-13681 RESERVED + - chromium CVE-2019-13680 RESERVED + - chromium CVE-2019-13679 RESERVED + - chromium CVE-2019-13678 RESERVED + - chromium CVE-2019-13677 RESERVED + - chromium CVE-2019-13676 RESERVED + - chromium CVE-2019-13675 RESERVED + - chromium CVE-2019-13674 RESERVED + - chromium CVE-2019-13673 RESERVED + - chromium CVE-2019-13672 RESERVED CVE-2019-13671 RESERVED + - chromium CVE-2019-13670 RESERVED + - chromium CVE-2019-13669 RESERVED + - chromium CVE-2019-13668 RESERVED + - chromium CVE-2019-13667 RESERVED + - chromium CVE-2019-13666 RESERVED + - chromium CVE-2019-13665 RESERVED + - chromium CVE-2019-13664 RESERVED + - chromium CVE-2019-13663 RESERVED + - chromium CVE-2019-13662 RESERVED + - chromium CVE-2019-13661 RESERVED + - chromium CVE-2019-13660 RESERVED + - chromium CVE-2019-13659 RESERVED + - chromium CVE-2019-13658 RESERVED CVE-2019-13657 @@ -31953,28 +31981,40 @@ CVE-2019-5883 (An Incorrect Access Control issue was discovered in GitLab Commun NOTE: https://about.gitlab.com/2018/11/28/security-release-gitlab-11-dot-5-dot-1-released/ CVE-2019-5881 RESERVED + - chromium CVE-2019-5880 RESERVED + - chromium CVE-2019-5879 RESERVED + - chromium CVE-2019-5878 RESERVED + - chromium CVE-2019-5877 RESERVED + - chromium CVE-2019-5876 RESERVED + - chromium CVE-2019-5875 RESERVED + - chromium CVE-2019-5874 RESERVED + - chromium CVE-2019-5873 RESERVED + - chromium CVE-2019-5872 RESERVED + - chromium CVE-2019-5871 RESERVED + - chromium CVE-2019-5870 RESERVED + - chromium CVE-2019-5869 RESERVED - chromium @@ -55164,14 +55204,12 @@ CVE-2018-16875 (The crypto/x509 package of Go before 1.10.6 and 1.11.x before 1. NOTE: https://github.com/golang/go/issues/29233 NOTE: https://github.com/golang/go/commit/df523969435b8945d939c7e2a849b50910ef4c25 (1.11.3) NOTE: https://github.com/golang/go/commit/0a4a37f1f0a36e55d8ae5c34210a79499f9f2a9d (1.10.6) - TODO: check other versions CVE-2018-16874 (In Go before 1.10.6 and 1.11.x before 1.11.3, the "go get" command is ...) - golang-1.11 1.11.3-1 - golang-1.10 1.10.6-1 NOTE: https://github.com/golang/go/issues/29231 NOTE: https://github.com/golang/go/commit/8954addb3294a5e664a9833354bafa58f163fe8f (1.11.3) NOTE: https://github.com/golang/go/commit/90d609ba6156299642d08afc06d85ab770a03972 (1.10.6) - TODO: check other versions CVE-2018-16873 (In Go before 1.10.6 and 1.11.x before 1.11.3, the "go get" command is ...) - golang-1.11 1.11.3-1 - golang-1.10 1.10.6-1 @@ -55180,7 +55218,6 @@ CVE-2018-16873 (In Go before 1.10.6 and 1.11.x before 1.11.3, the "go get" comma NOTE: https://github.com/golang/go/commit/5aedc8af94c0a8ffc58cbd09993192dea9b238db (1.11.3) NOTE: https://github.com/golang/go/commit/90d609ba6156299642d08afc06d85ab770a03972 (1.10.6) NOTE: https://github.com/golang/go/commit/7ef6ee2c5727f0d11206b4d1866c18e6ab4785be (1.10.6) - TODO: check other versions CVE-2018-16872 (A flaw was found in qemu Media Transfer Protocol (MTP). The code openi ...) {DSA-4454-1 DLA-1694-1} - qemu 1:3.1+dfsg-2 (bug #916397) View it on GitLab:
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 96e541a6 by Moritz Muehlenhoff at 2019-09-23T08:40:11Z new chromium issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -8750,12 +8750,16 @@ CVE-2019-13689 RESERVED CVE-2019-13688 RESERVED + - chromium CVE-2019-13687 RESERVED + - chromium CVE-2019-13686 RESERVED + - chromium CVE-2019-13685 RESERVED + - chromium CVE-2019-13684 RESERVED CVE-2019-13683 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/96e541a6a0a74fe7fcec2ea047ecb2dcb73ea7b3 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/96e541a6a0a74fe7fcec2ea047ecb2dcb73ea7b3 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: faab6467 by Moritz Muehlenhoff at 2019-07-16T20:59:25Z new chromium issues one sox issue ignored fix patch reference for one sox issue take sox - - - - - 2 changed files: - data/CVE/list - data/dsa-needed.txt Changes: = data/CVE/list = @@ -1047,7 +1047,9 @@ CVE-2019-13592 CVE-2019-13591 RESERVED CVE-2019-13590 (An issue was discovered in libsox.a in SoX 14.4.2. In sox-fmt.h (start ...) - - sox (bug #932082) + - sox (low; bug #932082) + [buster] - sox (Minor issue) + [stretch] - sox (Minor issue) NOTE: https://sourceforge.net/p/sox/bugs/325/ CVE-2019-13589 (The paranoid2 gem 1.1.6 for Ruby, as distributed on RubyGems.org, incl ...) NOT-FOR-US: backdoor in paranoid_2 gem, different from src:ruby-paranoia @@ -15399,7 +15401,7 @@ CVE-2019-8354 (An issue was discovered in SoX 14.4.2. lsx_make_lpf in effect_i_d {DLA-1808-1} - sox 14.4.2+git20190427-1 (bug #927906) NOTE: https://sourceforge.net/p/sox/bugs/319 - NOTE: https://sourceforge.net/p/sox/code/ci/f8587e2d50dad72d40453ac1191c539ee9e50381/ + NOTE: https://sourceforge.net/p/sox/code/ci/f70911261a84333b077c29908e1242f69d7439eb CVE-2019-8353 RESERVED CVE-2019-8352 (By default, BMC PATROL Agent through 11.3.01 uses a static encryption ...) @@ -21572,8 +21574,10 @@ CVE-2019-5849 RESERVED CVE-2019-5848 RESERVED + - chromium CVE-2019-5847 RESERVED + - chromium CVE-2019-5846 RESERVED CVE-2019-5845 = data/dsa-needed.txt = @@ -54,7 +54,7 @@ simplesamlphp/oldstable -- smarty3/oldstable -- -sox/oldstable +sox/oldstable (jmm) -- sssd Maintainer prepared an update and proposed debdiff, acked for upload, but update needs further testing before release. View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/faab6467f126f1e45e381a544dff8fd231eaac45 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/faab6467f126f1e45e381a544dff8fd231eaac45 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: ebb59af1 by Moritz Muehlenhoff at 2019-06-07T10:48:29Z new chromium issues - - - - - 2 changed files: - data/CVE/list - data/dsa-needed.txt Changes: = data/CVE/list = @@ -17941,30 +17941,43 @@ CVE-2019-5841 RESERVED CVE-2019-5840 RESERVED + - chromium CVE-2019-5839 RESERVED + - chromium CVE-2019-5838 RESERVED + - chromium CVE-2019-5837 RESERVED + - chromium CVE-2019-5836 RESERVED + - chromium CVE-2019-5835 RESERVED + - chromium CVE-2019-5834 RESERVED + - chromium (iOS-specific) CVE-2019-5833 RESERVED + - chromium CVE-2019-5832 RESERVED + - chromium CVE-2019-5831 RESERVED + - chromium CVE-2019-5830 RESERVED + - chromium CVE-2019-5829 RESERVED + - chromium CVE-2019-5828 RESERVED + - chromium CVE-2019-5827 RESERVED - chromium = data/dsa-needed.txt = @@ -15,6 +15,8 @@ If needed, specify the release by adding a slash after the name of the source pa 389-ds-base (fw) Thorsten Alteholz proposed an update -- +chromium +-- cyrus-imapd Maintainer preparing updates -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ebb59af1f485d744d7fc0e1490319ab97a77ab91 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ebb59af1f485d744d7fc0e1490319ab97a77ab91 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 209a8f3b by Moritz Muehlenhoff at 2019-04-24T08:06:18Z new chromium issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -14480,42 +14480,58 @@ CVE-2019-5824 RESERVED CVE-2019-5823 RESERVED + - chromium 74.0.3729.108-1 CVE-2019-5822 RESERVED + - chromium 74.0.3729.108-1 CVE-2019-5821 RESERVED + - chromium 74.0.3729.108-1 CVE-2019-5820 RESERVED + - chromium 74.0.3729.108-1 CVE-2019-5819 RESERVED + - chromium 74.0.3729.108-1 CVE-2019-5818 RESERVED + - chromium 74.0.3729.108-1 CVE-2019-5817 RESERVED CVE-2019-5816 RESERVED CVE-2019-5815 RESERVED + - chromium 74.0.3729.108-1 CVE-2019-5814 RESERVED + - chromium 74.0.3729.108-1 CVE-2019-5813 RESERVED + - chromium 74.0.3729.108-1 CVE-2019-5812 RESERVED CVE-2019-5811 RESERVED + - chromium 74.0.3729.108-1 CVE-2019-5810 RESERVED + - chromium 74.0.3729.108-1 CVE-2019-5809 RESERVED + - chromium 74.0.3729.108-1 CVE-2019-5808 RESERVED + - chromium 74.0.3729.108-1 CVE-2019-5807 RESERVED + - chromium 74.0.3729.108-1 CVE-2019-5806 RESERVED + - chromium 74.0.3729.108-1 CVE-2019-5805 RESERVED + - chromium 74.0.3729.108-1 CVE-2019-5804 RESERVED - chromium (Windows-specific) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/209a8f3b352dec439facff038e2c2a32d409b268 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/209a8f3b352dec439facff038e2c2a32d409b268 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 79827afe by Moritz Muehlenhoff at 2019-01-29T22:03:29Z new chromium issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -3157,60 +3157,88 @@ CVE-2019-5782 RESERVED CVE-2019-5781 RESERVED + - chromium CVE-2019-5780 RESERVED + - chromium CVE-2019-5779 RESERVED + - chromium CVE-2019-5778 RESERVED + - chromium CVE-2019-5777 RESERVED + - chromium CVE-2019-5776 RESERVED + - chromium CVE-2019-5775 RESERVED + - chromium CVE-2019-5774 RESERVED + - chromium CVE-2019-5773 RESERVED + - chromium CVE-2019-5772 RESERVED + - chromium CVE-2019-5771 RESERVED + - chromium CVE-2019-5770 RESERVED + - chromium CVE-2019-5769 RESERVED + - chromium CVE-2019-5768 RESERVED + - chromium CVE-2019-5767 RESERVED + - chromium CVE-2019-5766 RESERVED + - chromium CVE-2019-5765 RESERVED + - chromium CVE-2019-5764 RESERVED + - chromium CVE-2019-5763 RESERVED + - chromium CVE-2019-5762 RESERVED + - chromium CVE-2019-5761 RESERVED + - chromium CVE-2019-5760 RESERVED + - chromium CVE-2019-5759 RESERVED + - chromium CVE-2019-5758 RESERVED + - chromium CVE-2019-5757 RESERVED + - chromium CVE-2019-5756 RESERVED + - chromium CVE-2019-5755 RESERVED + - chromium CVE-2019-5754 RESERVED + - chromium CVE-2018-20685 (In OpenSSH 7.9, scp.c in the scp client allows remote SSH servers to ...) - openssh 1:7.9p1-5 (bug #919101) NOTE: https://github.com/openssh/openssh-portable/commit/6010c0303a422a9c5fa8860c061bf7105eb7f8b2 @@ -33769,9 +33797,7 @@ CVE-2018-13420 (** DISPUTED ** Google gperftools 2.7 has a memory leak in ...) - google-perftools (unimportant; bug #903248) NOTE: https://github.com/gperftools/gperftools/issues/1013 CVE-2018-13419 (An issue has been found in libsndfile 1.0.28. There is a memory leak in ...) - - libsndfile (low) - [stretch] - libsndfile (Minor issue) - [jessie] - libsndfile (Minor issue) + NOTE: Misreport, not reprodiucible by upstream and no test file was provided NOTE: https://github.com/erikd/libsndfile/issues/398 CVE-2018-13418 (System command injection in ajaxdata.php in TerraMaster TOS 3.1.03 ...) NOT-FOR-US: TerraMaster TOS View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/79827afec8fa4154cc51d707a7b244d7d7a0ccc8 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/79827afec8fa4154cc51d707a7b244d7d7a0ccc8 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: c2229896 by Moritz Muehlenhoff at 2018-12-05T07:04:48Z new chromium issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -6614,54 +6614,105 @@ CVE-2018-18360 RESERVED CVE-2018-18359 RESERVED + - chromium 71.0.3578.80-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-18358 RESERVED + - chromium 71.0.3578.80-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-18357 RESERVED + - chromium 71.0.3578.80-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-18356 RESERVED + - chromium 71.0.3578.80-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-18355 RESERVED + - chromium 71.0.3578.80-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-18354 RESERVED + - chromium 71.0.3578.80-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-18353 RESERVED + - chromium 71.0.3578.80-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-18352 RESERVED + - chromium 71.0.3578.80-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-18351 RESERVED + - chromium 71.0.3578.80-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-18350 RESERVED + - chromium 71.0.3578.80-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-18349 RESERVED + - chromium 71.0.3578.80-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-18348 RESERVED + - chromium 71.0.3578.80-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-18347 RESERVED + - chromium 71.0.3578.80-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-18346 RESERVED + - chromium 71.0.3578.80-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-18345 RESERVED + - chromium 71.0.3578.80-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-18344 RESERVED + - sqlite3 + - chromium 71.0.3578.80-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-18343 RESERVED + - chromium 71.0.3578.80-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-18342 RESERVED + - chromium 71.0.3578.80-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-18341 RESERVED + - chromium 71.0.3578.80-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-18340 RESERVED + - chromium 71.0.3578.80-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-18339 RESERVED + - chromium 71.0.3578.80-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-18338 RESERVED + - chromium 71.0.3578.80-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-18337 RESERVED + - chromium 71.0.3578.80-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-18336 RESERVED + - chromium 71.0.3578.80-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-18335 RESERVED + - chromium 71.0.3578.80-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-18334 RESERVED CVE-2018-18333 @@ -8814,8 +8865,12 @@ CVE-2018-17482 RESERVED CVE-2018-17481 RESERVED + - chromium 71.0.3578.80-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-17480 RESERVED + - chromium 71.0.3578.80-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-17479 RESERVED {DSA-4342-1} View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c2229896ac88508d74fa93064907d627f85d7a1c -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c2229896ac88508d74fa93064907d627f85d7a1c You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: a8da528d by Moritz Muehlenhoff at 2018-10-17T08:04:09Z new chromium issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -2227,36 +2227,68 @@ CVE-2018-17478 RESERVED CVE-2018-17477 RESERVED + - chromium-browser 70.0.3538.67-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-17476 RESERVED + - chromium-browser 70.0.3538.67-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-17475 RESERVED + - chromium-browser 70.0.3538.67-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-17474 RESERVED + - chromium-browser 70.0.3538.67-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-17473 RESERVED + - chromium-browser 70.0.3538.67-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-17472 RESERVED + - chromium-browser 70.0.3538.67-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-17471 RESERVED + - chromium-browser 70.0.3538.67-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-17470 RESERVED + - chromium-browser 70.0.3538.67-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-17469 RESERVED + - chromium-browser 70.0.3538.67-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-17468 RESERVED + - chromium-browser 70.0.3538.67-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-17467 RESERVED + - chromium-browser 70.0.3538.67-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-17466 RESERVED + - chromium-browser 70.0.3538.67-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-17465 RESERVED + - chromium-browser 70.0.3538.67-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-17464 RESERVED + - chromium-browser 70.0.3538.67-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-17463 RESERVED + - chromium-browser 70.0.3538.67-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-17462 RESERVED + - chromium-browser 70.0.3538.67-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-17461 RESERVED CVE-2018-17460 @@ -3723,13 +3755,11 @@ CVE-2018-17458 [function signature mismatch in webassembly] {DSA-4297-1} - chromium-browser 69.0.3497.92-1 (bug #908806) [jessie] - chromium-browser (End of life, see DSA 4020) - NOTE: Workaround for DSA-4297-1 until CVEs assigned CVE-2018-17459 [url spoofing in omnibox] RESERVED {DSA-4297-1} - chromium-browser 69.0.3497.92-1 (bug #908806) [jessie] - chromium-browser (End of life, see DSA 4020) - NOTE: Workaround for DSA-4297-1 until CVEs assigned CVE-2018-1002009 NOTE: Wordpress plugin CVE-2018-1002008 @@ -35384,6 +35414,8 @@ CVE-2018-5180 (A use-after-free vulnerability can occur during WebGL operations. NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-11/#CVE-2018-5180 CVE-2018-5179 RESERVED + - chromium-browser 70.0.3538.67-1 + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-5178 (A buffer overflow was found during UTF8 to Unicode string conversion ...) {DSA-4209-1 DSA-4199-1 DLA-1382-1 DLA-1376-1} - firefox-esr 52.8.0esr-1 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/a8da528d99dd96c4bb9536e99540ef930359c1b7 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/a8da528d99dd96c4bb9536e99540ef930359c1b7 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 6f37758b by Moritz Muehlenhoff at 2018-09-11T18:35:57Z new chromium issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -1,3 +1,7 @@ +CVE-2018- [function signature mismatch in webassembly] + - chromium-browser +CVE-2018- [url spoofing in omnibox] + - chromium-browser CVE-2018-1002009 NOTE: Wordpress plugin CVE-2018-1002008 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6f37758b1c9ab6c960f2fa67860caa083905cefe -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6f37758b1c9ab6c960f2fa67860caa083905cefe You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 32c4fbdd by Moritz Muehlenhoff at 2018-09-04T21:45:54Z new chromium issues - - - - - 2 changed files: - data/CVE/list - data/dsa-needed.txt Changes: = data/CVE/list = @@ -48,6 +48,8 @@ CVE-2018-16436 CVE-2018-16435 (Little CMS (aka Little Color Management System) 2.9 has an integer ...) - lcms2 (bug #907983) - lcms + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) NOTE: https://github.com/mm2/Little-CMS/issues/171 NOTE: https://github.com/mm2/Little-CMS/commit/768f70ca405cd3159d990e962d54456773bb8cf8 CVE-2018-16434 @@ -861,46 +863,87 @@ CVE-2018-16086 RESERVED CVE-2018-16085 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-16084 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-16083 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-16082 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-16081 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-16080 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-16079 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-16078 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-16077 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-16076 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-16075 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-16074 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-16073 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-16072 RESERVED + - chromium-browser (Android-specific) CVE-2018-16071 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-16070 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-16069 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-16068 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-16067 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-16066 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-16065 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) CVE-2018-16064 RESERVED CVE-2018-16063 = data/dsa-needed.txt = @@ -20,6 +20,8 @@ asterisk -- ceph -- +chromium-browser +-- enigmail -- ghostscript (jmm) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/32c4fbdd30751a7c244279c2da9c5e13ddd2e8a2 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/32c4fbdd30751a7c244279c2da9c5e13ddd2e8a2 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 2485b02e by Moritz Muehlenhoff at 2018-05-30T11:39:23+02:00 new chromium issues stop tracking libv8 issues found by Chrome, those are not necessarily a security issue per se, but are most probably rather a security issue as used by Chromium. the nodejs developers seem to pick out those libv8 issues which affect nodejs, so well restrict to those. - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = --- a/data/CVE/list +++ b/data/CVE/list @@ -14441,54 +14441,129 @@ CVE-2018-6148 RESERVED CVE-2018-6147 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) + [wheezy] - chromium-browser (Not supported in Wheezy) CVE-2018-6146 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) + [wheezy] - chromium-browser (Not supported in Wheezy) CVE-2018-6145 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) + [wheezy] - chromium-browser (Not supported in Wheezy) CVE-2018-6144 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) + [wheezy] - chromium-browser (Not supported in Wheezy) CVE-2018-6143 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) + [wheezy] - chromium-browser (Not supported in Wheezy) CVE-2018-6142 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) + [wheezy] - chromium-browser (Not supported in Wheezy) CVE-2018-6141 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) + [wheezy] - chromium-browser (Not supported in Wheezy) CVE-2018-6140 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) + [wheezy] - chromium-browser (Not supported in Wheezy) CVE-2018-6139 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) + [wheezy] - chromium-browser (Not supported in Wheezy) CVE-2018-6138 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) + [wheezy] - chromium-browser (Not supported in Wheezy) CVE-2018-6137 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) + [wheezy] - chromium-browser (Not supported in Wheezy) CVE-2018-6136 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) + [wheezy] - chromium-browser (Not supported in Wheezy) CVE-2018-6135 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) + [wheezy] - chromium-browser (Not supported in Wheezy) CVE-2018-6134 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) + [wheezy] - chromium-browser (Not supported in Wheezy) CVE-2018-6133 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) + [wheezy] - chromium-browser (Not supported in Wheezy) CVE-2018-6132 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) + [wheezy] - chromium-browser (Not supported in Wheezy) CVE-2018-6131 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) + [wheezy] - chromium-browser (Not supported in Wheezy) CVE-2018-6130 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) + [wheezy] - chromium-browser (Not supported in Wheezy) CVE-2018-6129 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) + [wheezy] - chromium-browser (Not supported in Wheezy) CVE-2018-6128 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) + [wheezy] - chromium-browser (Not supported in Wheezy) CVE-2018-6127 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) + [wheezy] - chromium-browser (Not supported in Wheezy) CVE-2018-6126 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) + [wheezy] - chromium-browser (Not supported in Wheezy) CVE-2018-6125 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) + [wheezy] - chromium-browser
[Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 534a6604 by Moritz Muehlenhoff at 2018-05-11T23:03:48+02:00 new chromium issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = --- a/data/CVE/list +++ b/data/CVE/list @@ -12839,10 +12839,19 @@ CVE-2018-6123 RESERVED CVE-2018-6122 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) + [wheezy] - chromium-browser (Not supported in Wheezy) CVE-2018-6121 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) + [wheezy] - chromium-browser (Not supported in Wheezy) CVE-2018-6120 RESERVED + - chromium-browser + [jessie] - chromium-browser (End of life, see DSA 4020) + [wheezy] - chromium-browser (Not supported in Wheezy) CVE-2018-6119 RESERVED CVE-2018-6118 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/534a6604ba8c4414528eea7099089a927f217dec --- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/534a6604ba8c4414528eea7099089a927f217dec You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits