[Git][security-tracker-team/security-tracker][master] 2 commits: data/dla-needed.txt: Triage libspreadsheet-parseexcel-perl for buster LTS (CVE-2023-7101)
Chris Lamb (@lamby)
lamby at debian.org
Sat Dec 30 12:33:20 GMT 2023
Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker
Commits:
1216ea9e by Chris Lamb at 2023-12-30T12:20:56+00:00
data/dla-needed.txt: Triage libspreadsheet-parseexcel-perl for buster LTS (CVE-2023-7101)
- - - - -
bce07340 by Chris Lamb at 2023-12-30T12:21:49+00:00
Triage CVE-2023-47118, CVE-2023-48298 & CVE-2023-48704 in clickhouse for buster LTS.
- - - - -
2 changed files:
- data/CVE/list
- data/dla-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -984,6 +984,7 @@ CVE-2023-48704 (ClickHouse is an open-source column-oriented database management
- clickhouse <unfixed> (bug #1059367)
[bookworm] - clickhouse <no-dsa> (Minor issue)
[bullseye] - clickhouse <no-dsa> (Minor issue)
+ [buster] - clickhouse <no-dsa> (Minor issue)
NOTE: https://github.com/ClickHouse/ClickHouse/security/advisories/GHSA-5rmf-5g48-xv63
NOTE: https://github.com/ClickHouse/ClickHouse/pull/57107
CVE-2023-48670 (Dell SupportAssist for Home PCs version 3.14.1 and prior versions cont ...)
@@ -1129,6 +1130,7 @@ CVE-2023-48298 (ClickHouse\xae is an open-source column-oriented database manage
- clickhouse <unfixed> (bug #1059261)
[bookworm] - clickhouse <no-dsa> (Minor issue)
[bullseye] - clickhouse <no-dsa> (Minor issue)
+ [buster] - clickhouse <no-dsa> (Minor issue)
NOTE: https://github.com/ClickHouse/ClickHouse/security/advisories/GHSA-qw9f-qv29-8938
NOTE: https://github.com/ClickHouse/ClickHouse/pull/56795
CVE-2023-46649 (A race condition in GitHub Enterprise Server was identified that could ...)
@@ -1487,6 +1489,7 @@ CVE-2023-47118 (ClickHouse\xae is an open-source column-oriented database manage
- clickhouse <unfixed> (bug #1059261)
[bookworm] - clickhouse <no-dsa> (Minor issue)
[bullseye] - clickhouse <no-dsa> (Minor issue)
+ [buster] - clickhouse <no-dsa> (Minor issue)
NOTE: https://github.com/ClickHouse/ClickHouse/security/advisories/GHSA-g22g-p6q2-x39v
CVE-2023-46311 (Authorization Bypass Through User-Controlled Key vulnerability in gVec ...)
NOT-FOR-US: WordPress plugin
=====================================
data/dla-needed.txt
=====================================
@@ -122,6 +122,9 @@ libreswan
NOTE: 20230909: all due to code refactoring. I intend to package the version
NOTE: 20230909: from Bullseye instead as soon as the maintainer uploads the fix. (apo)
--
+libspreadsheet-parseexcel-perl
+ NOTE: 20231230: Added by Front-Desk (lamby)
+--
libssh (Sean Whitton)
NOTE: 20231219: Added by Front-Desk (ta)
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/179129dc8165f0fbce6a195c7f514630885b181e...bce0734072f5c5b275a47d94bafd803dd79ddc66
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/179129dc8165f0fbce6a195c7f514630885b181e...bce0734072f5c5b275a47d94bafd803dd79ddc66
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231230/f06e9cca/attachment.htm>
More information about the debian-security-tracker-commits
mailing list