[Git][security-tracker-team/security-tracker][master] Add CVE-2023-23934/python-werkzeug

Wed Feb 15 08:47:04 GMT 2023


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
89501cf8 by Salvatore Bonaccorso at 2023-02-15T09:46:32+01:00
Add CVE-2023-23934/python-werkzeug

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5098,7 +5098,9 @@ CVE-2023-23936
 CVE-2023-23935
 	RESERVED
 CVE-2023-23934 (Werkzeug is a comprehensive WSGI web application library. Browsers may ...)
-	TODO: check
+	- python-werkzeug <unfixed>
+	NOTE: https://github.com/pallets/werkzeug/commit/cf275f42acad1b5950c50ffe8ef58fe62cdce028 (2.2.3)
+	NOTE: https://github.com/pallets/werkzeug/security/advisories/GHSA-px8h-6qxv-m22q
 CVE-2023-23933 (OpenSearch Anomaly Detection identifies atypical data and receives aut ...)
 	NOT-FOR-US: OpenSearch Anomaly Detection
 CVE-2023-23932 (OpenDDS is an open source C++ implementation of the Object Management  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/89501cf83bc05739b90694eee53502836149ee99

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/89501cf83bc05739b90694eee53502836149ee99
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230215/d7f8a641/attachment.htm>
