[Git][security-tracker-team/security-tracker][master] Add upstream tag information for upstream commits for CVE-2023-26485 and CVE-2023-24824

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Apr 10 19:41:50 BST 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
bc78bfa5 by Salvatore Bonaccorso at 2023-04-10T20:40:59+02:00
Add upstream tag information for upstream commits for CVE-2023-26485 and CVE-2023-24824

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -11055,7 +11055,7 @@ CVE-2023-26485 (cmark-gfm is GitHub's fork of cmark, a CommonMark parsing and re
 	[bookworm] - ruby-commonmarker <no-dsa> (Minor issue)
 	[bullseye] - ruby-commonmarker <no-dsa> (Minor issue)
 	NOTE: https://github.com/github/cmark-gfm/security/advisories/GHSA-r8vr-c48j-fcc5
-	NOTE: https://github.com/github/cmark-gfm/commit/07a66c9bc341f902878e37d7da8647d6ef150987
+	NOTE: https://github.com/github/cmark-gfm/commit/07a66c9bc341f902878e37d7da8647d6ef150987 (0.29.0.gfm.10)
 CVE-2023-26484 (KubeVirt is a virtual machine management add-on for Kubernetes. In ver ...)
 	NOT-FOR-US: KubeVirt
 CVE-2023-26483 (gosaml2 is a Pure Go implementation of SAML 2.0. SAML Service Provider ...)
@@ -15917,7 +15917,7 @@ CVE-2023-24824 (cmark-gfm is GitHub's fork of cmark, a CommonMark parsing and re
 	[bookworm] - ruby-commonmarker <no-dsa> (Minor issue)
 	[bullseye] - ruby-commonmarker <no-dsa> (Minor issue)
 	NOTE: https://github.com/github/cmark-gfm/security/advisories/GHSA-66g8-4hjf-77xh
-	NOTE: https://github.com/github/cmark-gfm/commit/2300c1bd2c8226108885bf019655c4159cf26b59
+	NOTE: https://github.com/github/cmark-gfm/commit/2300c1bd2c8226108885bf019655c4159cf26b59 (0.29.0.gfm.10)
 CVE-2023-24823
 	RESERVED
 CVE-2023-24822



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bc78bfa5c00dad61b34688dbc2e617e0e803c802

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bc78bfa5c00dad61b34688dbc2e617e0e803c802
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230410/3e2f88f0/attachment.htm>

More information about the debian-security-tracker-commits mailing list