[Git][security-tracker-team/security-tracker][master] Add CVE-2023-6918 and CVE-2023-6004

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Dec 18 19:53:44 GMT 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
dc38b515 by Salvatore Bonaccorso at 2023-12-18T20:53:09+01:00
Add CVE-2023-6918 and CVE-2023-6004

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -4610,6 +4610,25 @@ CVE-2023-6008 (The UserPro plugin for WordPress is vulnerable to Cross-Site Requ
 	NOT-FOR-US: WordPress plugin
 CVE-2023-6007 (The UserPro plugin for WordPress is vulnerable to unauthorized access  ...)
 	NOT-FOR-US: WordPress plugin
+CVE-2023-6918
+	- libssh <unfixed>
+	NOTE: https://gitlab.com/libssh/libssh-mirror/-/commit/a16f34c57a4034f940c557936fd9434976adabcf
+	NOTE: https://gitlab.com/libssh/libssh-mirror/-/commit/10c200037a82218d43c30ff2fcda0af7fbe7168e
+	NOTE: https://gitlab.com/libssh/libssh-mirror/-/commit/5c407d2f16ab76c3dbc8324b4138f405177219b6
+	NOTE: https://gitlab.com/libssh/libssh-mirror/-/commit/59c00c66c4466bacaddf73dcd853ac1dac95ba39
+	NOTE: https://gitlab.com/libssh/libssh-mirror/-/commit/b3de3a33352a78214a534005e3e4f0576dcc9e17
+CVE-2023-6004
+	- libssh <unfixed>
+	NOTE: https://gitlab.com/libssh/libssh-mirror/-/commit/57ec9a35c612d416bfc045c48ccb69a5e9b57008
+	NOTE: https://gitlab.com/libssh/libssh-mirror/-/commit/1dfde16f49076b255e6370f30abf9f03d48997be
+	NOTE: https://gitlab.com/libssh/libssh-mirror/-/commit/b83368b2ed10a3d14344f374d9765d47d1d9f3f7
+	NOTE: https://gitlab.com/libssh/libssh-mirror/-/commit/0ff85b034a04d45e79a79cd5666b348b5e27800d
+	NOTE: https://gitlab.com/libssh/libssh-mirror/-/commit/2cd971e10e6244c6ffbfadbeba626ef998b4f78e
+	NOTE: https://gitlab.com/libssh/libssh-mirror/-/commit/95c6f880ef1539635bb82a134f7b8a06a46887ca
+	NOTE: https://gitlab.com/libssh/libssh-mirror/-/commit/7b697d711e2c8b88ca6e15e349caae2dff9cb442
+	NOTE: https://gitlab.com/libssh/libssh-mirror/-/commit/92e35c291c9a5c6dbe742a2677bf377597f69cd7
+	NOTE: https://gitlab.com/libssh/libssh-mirror/-/commit/2c92e8ce930a428a6fd150ae1ae55c5a365543f5
+	NOTE: https://gitlab.com/libssh/libssh-mirror/-/commit/f353b39ff2c0e0db51f978f035ac976ff5377413
 CVE-2023-5983 (Exposure of Sensitive Information to an Unauthorized Actor vulnerabili ...)
 	NOT-FOR-US: Botanik Software Pharmacy Automation
 CVE-2023-5921 (Improper Enforcement of Behavioral Workflow vulnerability in DECE Soft ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dc38b5156cc73a2154f665f4674af7702e415241

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dc38b5156cc73a2154f665f4674af7702e415241
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231218/28473e91/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list