[Git][security-tracker-team/security-tracker][master] CVE-2023-27534/curl: Add regression

[Adrian Bunk (@bunk)]

Adrian Bunk pushed to branch master at Debian Security Tracker / security-tracker


Commits:
abe25e07 by Adrian Bunk at 2023-12-17T22:38:01+02:00
CVE-2023-27534/curl: Add regression

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -44536,6 +44536,7 @@ CVE-2023-27534 (A path traversal vulnerability exists in curl <8.0.0 SFTP implem
 	NOTE: https://curl.se/docs/CVE-2023-27534.html
 	NOTE: Introduced by: https://github.com/curl/curl/commit/ba6f20a2442ab1ebfe947cff19a552f92114a29a (curl-7_18_0)
 	NOTE: Fixed by: https://github.com/curl/curl/commit/4e2b52b5f7a3bf50a0f1494155717b02cc1df6d6 (curl-8_0_0)
+	NOTE: Regression: https://github.com/curl/curl/commit/91b53efa4b6854dc3688f55bfb329b0cafcf5325 (curl-8_1_0)
 CVE-2023-27533 (A vulnerability in input validation exists in curl <8.0 during communi ...)
 	{DLA-3398-1}
 	- curl 7.88.1-7



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/abe25e07bd5765ec1243081d1304aab6e8913b85

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/abe25e07bd5765ec1243081d1304aab6e8913b85
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231217/1f9636e0/attachment.htm>