webkit2gtk / wpewebkit upstream advisory WSA-2022-0002

4 files changed, 19 insertions, 3 deletions

diff --git a/data/CVE/list.2020 b/data/CVE/list.2020
index 64f3b146bd..ac7f8fc503 100644
--- a/data/CVE/list.2020
+++ b/data/CVE/list.2020
@@ -20147,8 +20147,12 @@ CVE-2020-22594
 	RESERVED
 CVE-2020-22593
 	RESERVED
-CVE-2020-22592
+CVE-2020-22592 [A logic issue was addressed with improved state management]
 	RESERVED
+	- webkit2gtk 2.34.5-1
+	[stretch] - webkit2gtk <ignored> (Not covered by security support in stretch)
+	- wpewebkit 2.34.5-1
+	NOTE: https://webkitgtk.org/security/WSA-2022-0002.html
 CVE-2020-22591
 	RESERVED
 CVE-2020-22590
diff --git a/data/CVE/list.2021 b/data/CVE/list.2021
index 09ba756ee2..800bb47eb4 100644
--- a/data/CVE/list.2021
+++ b/data/CVE/list.2021
@@ -59047,8 +59047,12 @@ CVE-2021-22592
 	RESERVED
 CVE-2021-22591
 	RESERVED
-CVE-2021-22590
+CVE-2021-22590 [A use after free issue was addressed with improved memory management]
 	RESERVED
+	- webkit2gtk 2.34.5-1
+	[stretch] - webkit2gtk <ignored> (Not covered by security support in stretch)
+	- wpewebkit 2.34.5-1
+	NOTE: https://webkitgtk.org/security/WSA-2022-0002.html
 CVE-2021-22589
 	RESERVED
 CVE-2021-22588
diff --git a/data/CVE/list.2022 b/data/CVE/list.2022
index 71778d2d07..dc62790e2d 100644
--- a/data/CVE/list.2022
+++ b/data/CVE/list.2022
@@ -5877,8 +5877,12 @@ CVE-2022-22591
 	RESERVED
 CVE-2022-22590
 	RESERVED
-CVE-2022-22589
+CVE-2022-22589 [A validation issue was addressed with improved input sanitization]
 	RESERVED
+	- webkit2gtk 2.34.5-1
+	[stretch] - webkit2gtk <ignored> (Not covered by security support in stretch)
+	- wpewebkit 2.34.5-1
+	NOTE: https://webkitgtk.org/security/WSA-2022-0002.html
 CVE-2022-22588
 	RESERVED
 CVE-2022-22587
diff --git a/data/dsa-needed.txt b/data/dsa-needed.txt
index 4058a3ae0d..c96b725db4 100644
--- a/data/dsa-needed.txt
+++ b/data/dsa-needed.txt
@@ -56,3 +56,7 @@ trafficserver (jmm)
 --
 varnish (fw)
 --
+webkit2gtk
+--
+wpewebkit
+--