[Git][security-tracker-team/security-tracker][master] webkit2gtk / wpewebkit upstream advisory WSA-2023-0002
Alberto Garcia (@berto)
berto at debian.org
Wed Feb 15 15:36:55 GMT 2023
Alberto Garcia pushed to branch master at Debian Security Tracker / security-tracker
Commits:
6390e21d by Alberto Garcia at 2023-02-15T16:36:27+01:00
webkit2gtk / wpewebkit upstream advisory WSA-2023-0002
- - - - -
2 changed files:
- data/CVE/list
- data/dsa-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -6452,8 +6452,11 @@ CVE-2023-23531
RESERVED
CVE-2023-23530
RESERVED
-CVE-2023-23529
+CVE-2023-23529 [Processing maliciously crafted web content may lead to arbitrary code execution]
RESERVED
+ - webkit2gtk 2.38.5-1
+ - wpewebkit 2.38.5-1
+ NOTE: https://webkitgtk.org/security/WSA-2023-0002.html
CVE-2023-23528
RESERVED
CVE-2023-23527
=====================================
data/dsa-needed.txt
=====================================
@@ -61,6 +61,10 @@ thunderbird (jmm)
--
tiff (aron)
--
+webkit2gtk (berto)
+--
+wpewebkit (berto)
+--
xrdp
needs some additional clarification, tentatively DSA worthy
maybe upgrade to 0.9.21 within bullseye?
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6390e21d0c210c69f851ae7528048371aedf28a0
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6390e21d0c210c69f851ae7528048371aedf28a0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230215/bf3511df/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list