[Git][security-tracker-team/security-tracker][master] Add CVE-2023-40184/xrdp
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Aug 30 21:49:35 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
83054cfa by Salvatore Bonaccorso at 2023-08-30T22:49:03+02:00
Add CVE-2023-40184/xrdp
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -94,7 +94,9 @@ CVE-2023-40592 (In Splunk Enterprise versions below 9.1.1, 9.0.6, and 8.2.12, an
CVE-2023-40582 (find-exec is a utility to discover available shell commands. Versions ...)
TODO: check
CVE-2023-40184 (xrdp is an open source remote desktop protocol (RDP) server. In versio ...)
- TODO: check
+ - xrdp <unfixed>
+ NOTE: https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-f489-557v-47jq
+ NOTE: https://github.com/neutrinolabs/xrdp/commit/25a1fab5b6c5ef2a8bb109232b765cb8b332ce5e
CVE-2023-3992 (The PostX WordPress plugin before 3.0.6 does not sanitise and escape a ...)
NOT-FOR-US: WordPress plugin
CVE-2023-3720 (The Upload Media By URL WordPress plugin before 1.0.8 does not have CS ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/83054cfad46ddd2366a0f93e38866d90f9cec324
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/83054cfad46ddd2366a0f93e38866d90f9cec324
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230830/d1e70105/attachment.htm>
More information about the debian-security-tracker-commits
mailing list