[Git][security-tracker-team/security-tracker][master] new gitlab issues
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Thu Apr 6 17:21:42 BST 2023
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ea605466 by Moritz Mühlenhoff at 2023-04-06T18:21:01+02:00
new gitlab issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -10717,7 +10717,7 @@ CVE-2023-0840 (A vulnerability classified as problematic was found in PHPCrazy 1
CVE-2023-0839 (Improper Protection for Outbound Error Messages and Alert Signals vuln ...)
NOT-FOR-US: ProMIS Process Co. InSCADA
CVE-2023-0838 (An issue has been discovered in GitLab affecting versions starting fro ...)
- TODO: check
+ - gitlab <unfixed>
CVE-2023-0837
RESERVED
CVE-2023-25780
@@ -14344,7 +14344,7 @@ CVE-2023-0525
CVE-2023-0524 (As part of our Security Development Lifecycle, a potential privilege e ...)
NOT-FOR-US: Tenable
CVE-2023-0523 (An issue has been discovered in GitLab affecting all versions starting ...)
- TODO: check
+ - gitlab <unfixed>
CVE-2023-0522
RESERVED
CVE-2023-0521
@@ -15023,7 +15023,7 @@ CVE-2023-0452 (All versions of Econolite EOS traffic control software are vulner
CVE-2023-0451 (All versions of Econolite EOS traffic control software are vulnerable ...)
NOT-FOR-US: Econolite EOS traffic control software
CVE-2023-0450 (An issue has been discovered in GitLab affecting all versions starting ...)
- TODO: check
+ - gitlab <unfixed>
CVE-2023-0449
REJECTED
CVE-2023-0448 (The WP Helper Lite WordPress plugin, in versions < 4.3, returns all ...)
@@ -17161,7 +17161,7 @@ CVE-2023-0321 (Campbell Scientific dataloggers CR6, CR300, CR800, CR1000 and CR3
CVE-2023-0320 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
NOT-FOR-US: UBYS
CVE-2023-0319 (An issue has been discovered in GitLab affecting all versions starting ...)
- TODO: check
+ - gitlab <unfixed>
CVE-2023-0318
RESERVED
CVE-2023-0317
@@ -41054,7 +41054,7 @@ CVE-2022-3515 (A vulnerability was found in the Libksba library due to an intege
CVE-2022-3514 (An issue has been discovered in GitLab CE/EE affecting all versions st ...)
- gitlab <unfixed>
CVE-2022-3513 (An issue has been discovered in GitLab affecting all versions starting ...)
- TODO: check
+ - gitlab <unfixed>
CVE-2022-3512 (Using warp-cli command "add-trusted-ssid", a user was able to disconne ...)
NOT-FOR-US: Cloudflare
CVE-2022-3511 (The Awesome Support WordPress plugin before 6.1.2 does not ensure that ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ea605466d311c4a428ffbeab1a9760c76249ed56
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ea605466d311c4a428ffbeab1a9760c76249ed56
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230406/773dc2ac/attachment.htm>
More information about the debian-security-tracker-commits
mailing list