[Git][security-tracker-team/security-tracker][master] Process two CVEs for mattermost

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e62a1f42 by Salvatore Bonaccorso at 2023-12-29T21:27:52+01:00
Process two CVEs for mattermost

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3,9 +3,9 @@ CVE-2023-7171 (A vulnerability was found in Novel-Plus up to 4.2.0. It has been
 CVE-2023-7166 (A vulnerability classified as problematic has been found in Novel-Plus ...)
 	TODO: check
 CVE-2023-7114 (Mattermost version 2.10.0 and earlier fails to sanitize deeplink paths ...)
-	TODO: check
+	- mattermost-server <itp> (bug #823556)
 CVE-2023-7113 (Mattermost version 8.1.6 and earlier fails to sanitize channel mention ...)
-	TODO: check
+	- mattermost-server <itp> (bug #823556)
 CVE-2023-7080 (The V8 inspector intentionally allows arbitrary code execution within  ...)
 	TODO: check
 CVE-2023-7079 (Sending specially crafted HTTP requests and inspector messages to Wran ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e62a1f42f19e48b30f3a281b4e71d8e0d32214b7

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e62a1f42f19e48b30f3a281b4e71d8e0d32214b7
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231229/7253abdf/attachment.htm>