[Git][security-tracker-team/security-tracker][master] bookworm triage

Moritz Muehlenhoff (@jmm) Thu, 23 Feb 2023 09:49:15 -0800


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
ce345456 by Moritz Muehlenhoff at 2023-02-23T17:52:23+01:00
bookworm triage

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -71738,6 +71738,7 @@ CVE-2022-28392
        RESERVED
 CVE-2022-28391 (BusyBox through 1.35.0 allows remote attackers to execute 
arbitrary co ...)
        - busybox <unfixed> (bug #1010264)
+       [bookworm] - busybox <no-dsa> (Minor issue)
        [bullseye] - busybox <no-dsa> (Minor issue)
        [buster] - busybox <no-dsa> (Minor issue)
        [stretch] - busybox <no-dsa> (Minor issue)
@@ -101743,15 +101744,18 @@ CVE-2021-43519 (Stack overflow in lua_resume of 
ldo.c in Lua Interpreter 5.1.0~5
        - lua5.4 5.4.4-1 (bug #1000228)
        [bullseye] - lua5.4 <no-dsa> (Minor issue)
        - lua5.3 <unfixed>
-       [bullseye] - lua5.3 <no-dsa> (Minor issue)
+       [bookworm] - lua5.3 <ignored> (Minor issue)
+       [bullseye] - lua5.3 <ignored> (Minor issue)
        [buster] - lua5.3 <no-dsa> (Minor issue)
        [stretch] - lua5.3 <no-dsa> (Minor issue)
        - lua5.2 <unfixed>
-       [bullseye] - lua5.2 <no-dsa> (Minor issue)
+       [bookworm] - lua5.2 <ignored> (Minor issue)
+       [bullseye] - lua5.2 <ignored> (Minor issue)
        [buster] - lua5.2 <no-dsa> (Minor issue)
        [stretch] - lua5.2 <no-dsa> (Minor issue)
        - lua5.1 <unfixed>
-       [bullseye] - lua5.1 <no-dsa> (Minor issue)
+       [bookworm] - lua5.1 <ignored> (Minor issue)
+       [bullseye] - lua5.1 <ignored> (Minor issue)
        [buster] - lua5.1 <no-dsa> (Minor issue)
        [stretch] - lua5.1 <no-dsa> (Minor issue)
        - lua50 <not-affected> (Vulnerable code not present)
@@ -164207,6 +164211,7 @@ CVE-2021-20256 (A flaw was found in Red Hat 
Satellite. The BMC interface exposes
 CVE-2021-20255 (A stack overflow via an infinite recursion vulnerability was 
found in  ...)
        {DLA-2623-1}
        - qemu <unfixed> (bug #984451)
+       [bookworm] - qemu <postponed> (Minor issue)
        [bullseye] - qemu <postponed> (Minor issue)
        [buster] - qemu <postponed> (Minor issue, waiting for sanctioned patch, 
fixed in stretch-lts)
        NOTE: 
https://lists.gnu.org/archive/html/qemu-devel/2021-02/msg06098.html
@@ -165060,6 +165065,7 @@ CVE-2020-35504 (A NULL pointer dereference flaw was 
found in the SCSI emulation
        NOTE: 
https://git.qemu.org/?p=qemu.git;a=commit;h=607206948cacda4a80be5b976dba
 CVE-2020-35503 (A NULL pointer dereference flaw was found in the megasas-gen2 
SCSI hos ...)
        - qemu <unfixed> (bug #979678)
+       [bookworm] - qemu <postponed> (Minor issue)
        [bullseye] - qemu <postponed> (Minor issue)
        [buster] - qemu <postponed> (Minor issue, waiting for sanctioned patch)
        NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1910346



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ce3454562a36f2c8faac7d60e665e81bf801229e

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ce3454562a36f2c8faac7d60e665e81bf801229e
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] bookworm triage

Reply via email to