[Git][security-tracker-team/security-tracker][master] Add Debian bug references for CVE-2023-382{3,4}/php

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Aug 11 22:47:32 BST 2023



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b3ab749b by Salvatore Bonaccorso at 2023-08-11T23:46:22+02:00
Add Debian bug references for CVE-2023-382{3,4}/php

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -56,14 +56,14 @@ CVE-2023-40224 (MISP 2.4174 allows XSS in app/View/Events/index.ctp.)
 CVE-2023-40014 (OpenZeppelin Contracts is a library for secure smart contract developm ...)
 	NOT-FOR-US: OpenZeppelin Contracts
 CVE-2023-3824 (In PHP version 8.0.* before 8.0.30, 8.1.* before 8.1.22, and 8.2.* bef ...)
-	- php8.2 <unfixed>
+	- php8.2 <unfixed> (bug #1043477)
 	- php7.4 <removed>
 	- php7.3 <removed>
 	NOTE: https://github.com/php/php-src/security/advisories/GHSA-jqcx-ccgc-xwhv
 	NOTE: https://github.com/php/php-src/commit/80316123f3e9dcce8ac419bd9dd43546e2ccb5ef (php-8.0.30)
 	NOTE: Fixed in: 8.0.30, 8.1.22, 8.2.8
 CVE-2023-3823 (In PHP versions 8.0.* before 8.0.30, 8.1.* before 8.1.22, and 8.2.* be ...)
-	- php8.2 <unfixed>
+	- php8.2 <unfixed> (bug #1043477)
 	- php7.4 <removed>
 	- php7.3 <removed>
 	NOTE: https://github.com/php/php-src/security/advisories/GHSA-3qrf-m4j2-pcrr



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b3ab749b1724e7c421db2e6a0ec5cc065dfe2072

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b3ab749b1724e7c421db2e6a0ec5cc065dfe2072
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230811/6ce699ef/attachment.htm>


More information about the debian-security-tracker-commits mailing list