[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2023-26112/configobj
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Apr 10 13:34:46 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
5b8dd88d by Salvatore Bonaccorso at 2023-04-10T14:34:08+02:00
Add Debian bug reference for CVE-2023-26112/configobj
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -12042,7 +12042,7 @@ CVE-2023-26114 (Versions of the package code-server before 4.10.1 are vulnerable
CVE-2023-26113 (Versions of the package collection.js before 6.8.1 are vulnerable to P ...)
TODO: check
CVE-2023-26112 (All versions of the package configobj are vulnerable to Regular Expres ...)
- - configobj <unfixed>
+ - configobj <unfixed> (bug #1034152)
NOTE: https://security.snyk.io/vuln/SNYK-PYTHON-CONFIGOBJ-3252494
NOTE: https://github.com/DiffSK/configobj/issues/232
CVE-2023-26111 (All versions of the package @nubosoftware/node-static; all versions of ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5b8dd88d143494b0b9a7709dc78fde404f3c20ed
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5b8dd88d143494b0b9a7709dc78fde404f3c20ed
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230410/a38ce144/attachment.htm>
More information about the debian-security-tracker-commits
mailing list