[Git][security-tracker-team/security-tracker][master] Add CVE-2023-40303/inetutils
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Aug 14 09:20:56 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
86e2e2af by Salvatore Bonaccorso at 2023-08-14T10:20:23+02:00
Add CVE-2023-40303/inetutils
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2,7 +2,9 @@ CVE-2023-40305 (GNU indent 2.2.13 has a heap-based buffer overflow in search_bra
- indent <unfixed>
NOTE: https://savannah.gnu.org/bugs/index.php?64503
CVE-2023-40303 (GNU inetutils through 2.4 may allow privilege escalation because of un ...)
- TODO: check
+ - inetutils <unfixed>
+ NOTE: https://git.savannah.gnu.org/cgit/inetutils.git/commit/?id=e4e65c03f4c11292a3e40ef72ca3f194c8bffdd6
+ NOTE: https://lists.gnu.org/archive/html/bug-inetutils/2023-07/msg00000.html
CVE-2023-40296 (async-sockets-cpp through 0.3.1 has a stack-based buffer overflow in R ...)
TODO: check
CVE-2023-40295 (libboron in Boron 2.0.8 has a heap-based buffer overflow in ur_strInit ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/86e2e2afbc2b8ee0db40dcf07924329d696cb360
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/86e2e2afbc2b8ee0db40dcf07924329d696cb360
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230814/18f298f8/attachment.htm>
More information about the debian-security-tracker-commits
mailing list