[prev in list] [next in list] [prev in thread] [next in thread] 

List:       openembedded-core
Subject:    [OE-core] OE-core CVE metrics for kirkstone on Sun 31 Jul 2022 03:00:01 AM HST
From:       "Steve Sakoman" <steve () sakoman ! com>
Date:       2022-07-31 12:58:06
Message-ID: 20220731130215.6BF0F9609AE () nuc ! router0800d9 ! com
[Download RAW message or body]

Branch: kirkstone

New this week: 1 CVEs
CVE-2022-2522 (CVSS3: 7.8 HIGH): vim \
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-2522 *

Removed this week: 4 CVEs
CVE-2022-32205 (CVSS3: 4.3 MEDIUM): curl:curl-native \
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-32205 * CVE-2022-32206 \
(CVSS3: 6.5 MEDIUM): curl:curl-native \
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-32206 * CVE-2022-32207 \
(CVSS3: 9.8 CRITICAL): curl:curl-native \
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-32207 * CVE-2022-32208 \
(CVSS3: 5.9 MEDIUM): curl:curl-native \
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-32208 *

Full list:  Found 16 unpatched CVEs
CVE-2021-3611 (CVSS3: 6.5 MEDIUM): qemu:qemu-native:qemu-system-native \
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3611 * CVE-2021-3750 \
(CVSS3: 8.2 HIGH): qemu:qemu-native:qemu-system-native \
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3750 * CVE-2022-1183 \
(CVSS3: 7.5 HIGH): bind \
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-1183 * CVE-2022-1664 \
(CVSS3: 9.8 CRITICAL): dpkg \
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-1664 * CVE-2022-2288 \
(CVSS3: 7.8 HIGH): vim https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-2288 \
* CVE-2022-2289 (CVSS3: 7.8 HIGH): vim \
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-2289 * CVE-2022-2304 \
(CVSS3: 7.8 HIGH): vim https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-2304 \
* CVE-2022-2343 (CVSS3: 7.8 HIGH): vim \
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-2343 * CVE-2022-2344 \
(CVSS3: 7.8 HIGH): vim https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-2344 \
* CVE-2022-2345 (CVSS3: 7.8 HIGH): vim \
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-2345 * CVE-2022-2522 \
(CVSS3: 7.8 HIGH): vim https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-2522 \
* CVE-2022-29187 (CVSS3: 7.8 HIGH): git \
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-29187 * CVE-2022-30634 \
(CVSS3: 7.5 HIGH): go https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-30634 \
* CVE-2022-33099 (CVSS3: 7.5 HIGH): lua:lua-native \
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-33099 * CVE-2022-34903 \
(CVSS3: 6.5 MEDIUM): gnupg:gnupg-native \
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-34903 * CVE-2022-35414 \
(CVSS3: 8.8 HIGH): qemu:qemu-native:qemu-system-native \
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-35414 *

\nFor further information see: \
https://autobuilder.yocto.io/pub/non-release/patchmetrics/



-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#168689): https://lists.openembedded.org/g/openembedded-core/message/168689
Mute This Topic: https://lists.openembedded.org/mt/92726350/4454766
Group Owner: openembedded-core+owner@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [openembedded-core@marc.info]
-=-=-=-=-=-=-=-=-=-=-=-



[prev in list] [next in list] [prev in thread] [next in thread]