[Git][security-tracker-team/security-tracker][master] Add two new CVEs for airflow, itp'ed

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Aug 24 16:20:27 BST 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ef9f1fa0 by Salvatore Bonaccorso at 2023-08-24T17:19:50+02:00
Add two new CVEs for airflow, itp'ed

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -39,7 +39,7 @@ CVE-2023-40573 (XWiki Platform is a generic wiki platform offering runtime servi
 CVE-2023-40572 (XWiki Platform is a generic wiki platform offering runtime services fo ...)
 	NOT-FOR-US: XWiki
 CVE-2023-40273 (The session fixation vulnerability allowed the authenticated user to c ...)
-	TODO: check
+	- airflow <itp> (bug #819700)
 CVE-2023-40270
 	REJECTED
 CVE-2023-40185 (shescape is simple shell escape library for JavaScript. This may impac ...)
@@ -69,7 +69,7 @@ CVE-2023-38831 (RARLabs WinRAR before 6.23 allows attackers to execute arbitrary
 CVE-2023-38422 (Walchem Intuition 9 firmware versions prior to v4.21 are missing authe ...)
 	NOT-FOR-US: Walchem Intuition 9 firmware
 CVE-2023-37379 (Apache Airflow, in versions prior to 2.7.0, contains a security vulner ...)
-	TODO: check
+	- airflow <itp> (bug #819700)
 CVE-2023-36317 (Cross Site Scripting (XSS) vulnerability in sourcecodester Student Stu ...)
 	NOT-FOR-US: sourcecodester Student Study Center Desk Management System
 CVE-2023-32509 (Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Rolf van ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ef9f1fa0156a83957b9e27dccd0b626ab12f1046

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ef9f1fa0156a83957b9e27dccd0b626ab12f1046
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230824/1cdebdf0/attachment.htm>

More information about the debian-security-tracker-commits mailing list