[Git][security-tracker-team/security-tracker][master] automatic update

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
87d558fe by security tracker role at 2023-12-10T20:12:11+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,35 @@
+CVE-2023-6655 (A vulnerability, which was classified as critical, has been found in H ...)
+	TODO: check
+CVE-2023-6654 (A vulnerability classified as critical was found in PHPEMS 6.x/7.0. Af ...)
+	TODO: check
+CVE-2023-6653 (A vulnerability was found in PHPGurukul Teacher Subject Allocation Man ...)
+	TODO: check
+CVE-2023-6652 (A vulnerability was found in code-projects Matrimonial Site 1.0. It ha ...)
+	TODO: check
+CVE-2023-6651 (A vulnerability was found in code-projects Matrimonial Site 1.0. It ha ...)
+	TODO: check
+CVE-2023-6650 (A vulnerability was found in SourceCodester Simple Invoice Generator S ...)
+	TODO: check
+CVE-2023-6649 (A vulnerability has been found in PHPGurukul Teacher Subject Allocatio ...)
+	TODO: check
+CVE-2023-6648 (A vulnerability, which was classified as critical, was found in PHPGur ...)
+	TODO: check
+CVE-2023-50457 (An issue was discovered in Zammad before 6.2.0. When listing tickets l ...)
+	TODO: check
+CVE-2023-50456 (An issue was discovered in Zammad before 6.2.0. An attacker can trigge ...)
+	TODO: check
+CVE-2023-50455 (An issue was discovered in Zammad before 6.2.0. Due to lack of rate li ...)
+	TODO: check
+CVE-2023-50454 (An issue was discovered in Zammad before 6.2.0. In several subsystems, ...)
+	TODO: check
+CVE-2023-50453 (An issue was discovered in Zammad before 6.2.0. It uses the public end ...)
+	TODO: check
+CVE-2023-50449 (JFinalCMS 5.0.0 could allow a remote attacker to read files via ../ Di ...)
+	TODO: check
+CVE-2023-50446 (An issue was discovered in Mullvad VPN Windows app before 2023.6-beta1 ...)
+	TODO: check
+CVE-2022-48614 (Special:Ask in Semantic MediaWiki before 4.0.2 allows Reflected XSS.)
+	TODO: check
 CVE-2023-6647 (A vulnerability, which was classified as critical, has been found in A ...)
 	NOT-FOR-US: AMTT HiBOS
 CVE-2023-6646 (A vulnerability classified as problematic has been found in linkding 1 ...)
@@ -4663,7 +4695,7 @@ CVE-2023-39295 (An OS command injection vulnerability has been reported to affec
 	NOT-FOR-US: QNAP
 CVE-2023-36027 (Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability)
 	NOT-FOR-US: Microsoft
-CVE-2023-5870
+CVE-2023-5870 (A flaw was found in PostgreSQL involving the pg_cancel_backend role th ...)
 	{DSA-5554-1 DSA-5553-1 DLA-3651-1}
 	- postgresql-16 16.1-1
 	- postgresql-15 <removed> (bug #1056283)
@@ -4671,7 +4703,7 @@ CVE-2023-5870
 	- postgresql-11 <removed>
 	NOTE: https://www.postgresql.org/support/security/CVE-2023-5870/
 	NOTE: https://www.postgresql.org/about/news/postgresql-161-155-1410-1313-1217-and-1122-released-2749/
-CVE-2023-5869
+CVE-2023-5869 (A flaw was found in PostgreSQL that allows authenticated database user ...)
 	{DSA-5554-1 DSA-5553-1 DLA-3651-1}
 	- postgresql-16 16.1-1
 	- postgresql-15 <removed> (bug #1056283)
@@ -4679,7 +4711,7 @@ CVE-2023-5869
 	- postgresql-11 <removed>
 	NOTE: https://www.postgresql.org/support/security/CVE-2023-5869/
 	NOTE: https://www.postgresql.org/about/news/postgresql-161-155-1410-1313-1217-and-1122-released-2749/
-CVE-2023-5868
+CVE-2023-5868 (A memory disclosure vulnerability was found in PostgreSQL that allows  ...)
 	{DSA-5554-1 DSA-5553-1 DLA-3651-1}
 	- postgresql-16 16.1-1
 	- postgresql-15 <removed> (bug #1056283)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/87d558feae55915b951bd63de9a62f5c73cfe8ba

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/87d558feae55915b951bd63de9a62f5c73cfe8ba
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231210/2335649e/attachment.htm>