[Git][security-tracker-team/security-tracker][master] Add CVE-2023-49297/pydrive2
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Dec 6 08:34:14 GMT 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
03ee0f61 by Salvatore Bonaccorso at 2023-12-06T09:33:28+01:00
Add CVE-2023-49297/pydrive2
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5,7 +5,9 @@ CVE-2023-5970 (Improper authentication in the SMA100 SSL-VPN virtual office port
CVE-2023-49897 (An OS command injection vulnerability exists in AE1021PE firmware vers ...)
TODO: check
CVE-2023-49297 (PyDrive2 is a wrapper library of google-api-python-client that simplif ...)
- TODO: check
+ - pydrive2 <unfixed>
+ NOTE: https://github.com/iterative/PyDrive2/security/advisories/GHSA-v5f6-hjmf-9mc5
+ NOTE: https://github.com/iterative/PyDrive2/commit/c57355dc2033ad90b7050d681b2c3ba548ff0004 (1.16.2)
CVE-2023-49283 (microsoft-graph-core the Microsoft Graph Library for PHP. The Microsof ...)
TODO: check
CVE-2023-49282 (msgraph-sdk-php is the Microsoft Graph Library for PHP. The Microsoft ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/03ee0f61ee78a966186a26e2f3dbc540c21e0212
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/03ee0f61ee78a966186a26e2f3dbc540c21e0212
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231206/52b49a20/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list