[Git][security-tracker-team/security-tracker][master] Add CVE-2023-34194/tinyxml

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2062aec2 by Salvatore Bonaccorso at 2023-12-14T22:17:00+01:00
Add CVE-2023-34194/tinyxml

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -603,7 +603,9 @@ CVE-2023-43813 (GLPI is a free asset and IT management software package. Startin
 CVE-2023-42495 (Dasan Networks - W-Web versions 1.22-1.27 - CWE-78: Improper Neutraliz ...)
 	NOT-FOR-US: Dasan Networks W-Web
 CVE-2023-34194 (StringEqual in TiXmlDeclaration::Parse in tinyxmlparser.cpp in TinyXML ...)
-	TODO: check
+	- tinyxml <unfixed>
+	NOTE: https://www.forescout.com/resources/sierra21-vulnerabilities
+	TODO: check details and embedded copies once assessment for tinyxml done
 CVE-2023-6707
 	{DSA-5577-1}
 	- chromium 120.0.6099.109-1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2062aec2a35e37de6eb6e1c0a1e87bda681a85f8

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2062aec2a35e37de6eb6e1c0a1e87bda681a85f8
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231214/695c9e0d/attachment.htm>