[Git][security-tracker-team/security-tracker][master] Add CVE-2022-46391/awstats
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Dec 4 08:24:35 GMT 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
859a07c3 by Salvatore Bonaccorso at 2022-12-04T09:24:05+01:00
Add CVE-2022-46391/awstats
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -49,7 +49,10 @@ CVE-2022-46393
CVE-2022-46392
RESERVED
CVE-2022-46391 (AWStats 7.x through 7.8 allows XSS in the hostinfo plugin due to print ...)
- TODO: check
+ - awstats <unfixed>
+ [bullseye] - awstats <no-dsa> (Minor issue)
+ NOTE: https://github.com/eldy/AWStats/pull/226
+ NOTE: Fixed by: https://github.com/eldy/AWStats/commit/38682330e1ec3f3af95f9436640358b2d9e4a965
CVE-2022-46390
RESERVED
CVE-2022-46389
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/859a07c3d60a7f8cf0ce6467af7bd83ccea92ecf
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/859a07c3d60a7f8cf0ce6467af7bd83ccea92ecf
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221204/502c521d/attachment.htm>
More information about the debian-security-tracker-commits
mailing list