[Git][security-tracker-team/security-tracker][master] automatic update

Mon Apr 3 09:10:26 BST 2023


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
aca8833b by security tracker role at 2023-04-03T08:10:15+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -361,25 +361,25 @@ CVE-2023-29044
 CVE-2023-29043
 	RESERVED
 CVE-2023-29042
-	RESERVED
+	REJECTED
 CVE-2023-29041
-	RESERVED
+	REJECTED
 CVE-2023-29040
-	RESERVED
+	REJECTED
 CVE-2023-29039
-	RESERVED
+	REJECTED
 CVE-2023-29038
-	RESERVED
+	REJECTED
 CVE-2023-29037
-	RESERVED
+	REJECTED
 CVE-2023-29036
-	RESERVED
+	REJECTED
 CVE-2023-29035
-	RESERVED
+	REJECTED
 CVE-2023-29034
-	RESERVED
+	REJECTED
 CVE-2023-29033
-	RESERVED
+	REJECTED
 CVE-2023-1741 (A vulnerability was found in jeecg-boot 3.5.0. It has been declared as ...)
 	TODO: check
 CVE-2023-1740 (A vulnerability was found in SourceCodester Air Cargo Management Syste ...)
@@ -1299,7 +1299,7 @@ CVE-2023-1600
 CVE-2023-1599
 	RESERVED
 CVE-2023-1598
-	RESERVED
+	REJECTED
 CVE-2023-1597
 	RESERVED
 CVE-2023-1596
@@ -6061,12 +6061,12 @@ CVE-2023-27288
 	RESERVED
 CVE-2023-27287
 	RESERVED
-CVE-2023-27286
-	RESERVED
+CVE-2023-27286 (IBM Aspera Cargo 4.2.5 and IBM Aspera Connect 4.2.5 are vulnerable to  ...)
+	TODO: check
 CVE-2023-27285
 	RESERVED
-CVE-2023-27284
-	RESERVED
+CVE-2023-27284 (IBM Aspera Cargo 4.2.5 and IBM Aspera Connect 4.2.5 are vulnerable to  ...)
+	TODO: check
 CVE-2023-27283
 	RESERVED
 CVE-2023-27282
@@ -8513,8 +8513,8 @@ CVE-2023-26285
 	RESERVED
 CVE-2023-26284 (IBM MQ Certified Container 9.3.0.1 through 9.3.0.3 and 9.3.1.0 through ...)
 	NOT-FOR-US: IBM
-CVE-2023-26283
-	RESERVED
+CVE-2023-26283 (IBM WebSphere Application Server 9.0 is vulnerable to cross-site scrip ...)
+	TODO: check
 CVE-2023-26282
 	RESERVED
 CVE-2023-26281 (IBM HTTP Server 8.5 used by IBM WebSphere Application Server could all ...)
@@ -8938,8 +8938,8 @@ CVE-2023-26121
 	RESERVED
 CVE-2023-26120
 	RESERVED
-CVE-2023-26119
-	RESERVED
+CVE-2023-26119 (Versions of the package net.sourceforge.htmlunit:htmlunit from 0 and b ...)
+	TODO: check
 CVE-2023-26118 (All versions of the package angular are vulnerable to Regular Expressi ...)
 	- angular.js <unfixed>
 	NOTE: https://security.snyk.io/vuln/SNYK-JS-ANGULAR-3373046
@@ -8955,8 +8955,8 @@ CVE-2023-26114 (Versions of the package code-server before 4.10.1 are vulnerable
 	TODO: check
 CVE-2023-26113 (Versions of the package collection.js before 6.8.1 are vulnerable to P ...)
 	TODO: check
-CVE-2023-26112
-	RESERVED
+CVE-2023-26112 (All versions of the package configobj are vulnerable to Regular Expres ...)
+	TODO: check
 CVE-2023-26111 (All versions of the package @nubosoftware/node-static; all versions of ...)
 	NOT-FOR-US: @nubosoftware/node-static
 CVE-2023-26110 (All versions of the package node-bluetooth are vulnerable to Buffer Ov ...)
@@ -40260,7 +40260,7 @@ CVE-2022-3489 (The WP Hide WordPress plugin through 0.0.2 does not have authoris
 CVE-2022-3488 (Processing of repeated responses to the same query, where both respons ...)
 	- bind9 <not-affected> (Only affects Supported Preview Edition/Subscription Edition)
 CVE-2022-3487
-	RESERVED
+	REJECTED
 CVE-2022-3486 (An open redirect vulnerability in GitLab EE/CE affecting all versions  ...)
 	- gitlab <unfixed>
 CVE-2022-3485 (In IFM Moneo Appliance with version up to 1.9.3 an unauthenticated rem ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/aca8833bb05fe03e043d5376f7783f7685b475eb

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/aca8833bb05fe03e043d5376f7783f7685b475eb
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230403/de8c1cb7/attachment.htm>
