[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2023-34194/tinyxml

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c4de706a by Salvatore Bonaccorso at 2023-12-31T10:24:48+01:00
Track fixed version for CVE-2023-34194/tinyxml

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3519,7 +3519,7 @@ CVE-2023-42495 (Dasan Networks - W-Web versions 1.22-1.27 - CWE-78: Improper Neu
 	NOT-FOR-US: Dasan Networks W-Web
 CVE-2023-34194 (StringEqual in TiXmlDeclaration::Parse in tinyxmlparser.cpp in TinyXML ...)
 	{DLA-3701-1}
-	- tinyxml <unfixed> (bug #1059315)
+	- tinyxml 2.6.2-6.1 (bug #1059315)
 	NOTE: https://www.forescout.com/resources/sierra21-vulnerabilities
 	NOTE: Debian (non upstream) patch: https://salsa.debian.org/debian/tinyxml/-/raw/2366e1f23d059d4c20c43c54176b6bd78d6a83fc/debian/patches/CVE-2023-34194.patch
 CVE-2023-6707 (Use after free in CSS in Google Chrome prior to 120.0.6099.109 allowed ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c4de706a32ff39619a13a1104eaecf7e7b100663

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c4de706a32ff39619a13a1104eaecf7e7b100663
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231231/c6922c3b/attachment.htm>