[Git][security-tracker-team/security-tracker][master] bullseye triage
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Thu Feb 23 11:27:10 GMT 2023
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
5de29380 by Moritz Muehlenhoff at 2023-02-23T12:26:31+01:00
bullseye triage
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -521,6 +521,7 @@ CVE-2023-26254
RESERVED
CVE-2023-26253 (In Gluster GlusterFS 11.0, there is an xlators/mount/fuse/src/fuse-bri ...)
- glusterfs <unfixed> (bug #1031731)
+ [bullseye] - glusterfs <no-dsa> (Minor issue)
NOTE: https://github.com/gluster/glusterfs/issues/3954
CVE-2023-26252
RESERVED
@@ -628,6 +629,7 @@ CVE-2023-0927 (Use after free in Web Payments API in Google Chrome on Android pr
[buster] - chromium <end-of-life> (see DSA 5046)
CVE-2022-48340 (In Gluster GlusterFS 11.0, there is an xlators/cluster/dht/src/dht-com ...)
- glusterfs <unfixed> (bug #1031796)
+ [bullseye] - glusterfs <no-dsa> (Minor issue)
NOTE: https://github.com/gluster/glusterfs/issues/3732
CVE-2022-48336
RESERVED
@@ -15629,6 +15631,7 @@ CVE-2022-4511 (A vulnerability has been found in RainyGao DocSys and classified
NOT-FOR-US: RainyGao DocSys
CVE-2022-4510 (A path traversal vulnerability was identified in ReFirm Labs binwalk f ...)
- binwalk 2.3.4+dfsg1-1
+ [bullseye] - binwalk <no-dsa> (Minor issue)
NOTE: https://github.com/ReFirmLabs/binwalk/pull/617
NOTE: https://github.com/ReFirmLabs/binwalk/commit/696fe34ed680ffd951bfeca737feb4a0b98dde5c (v2.3.4)
CVE-2022-4509 (The Content Control WordPress plugin before 1.1.10 does not validate a ...)
@@ -91768,6 +91771,7 @@ CVE-2021-46024 (Projectworlds online-shopping-webvsite-in-php 1.0 suffers from a
NOT-FOR-US: Projectworlds online-shopping-webvsite-in-php
CVE-2021-46023 (An Untrusted Pointer Dereference was discovered in function mrb_vm_exe ...)
- mruby 3.1.0-1
+ [bullseye] - mruby <no-dsa> (Minor issue)
NOTE: https://github.com/mruby/mruby/issues/5613
CVE-2021-46022 (An Use-After-Free vulnerability in rec_mset_elem_destroy() at rec-mset ...)
- recutils <unfixed> (unimportant)
@@ -130834,6 +130838,7 @@ CVE-2021-32851 (Mind-elixir is a free, open source mind map core. Prior to versi
TODO: check
CVE-2021-32850 (jQuery MiniColors is a color picker built on jQuery. Prior to version ...)
- jquery-minicolors <unfixed> (bug #1031791)
+ [bullseye] - jquery-minicolors <no-dsa> (Minor issue)
NOTE: https://securitylab.github.com/advisories/GHSL-2021-1045_jQuery_MiniColors_Plugin/
NOTE: https://github.com/claviska/jquery-minicolors/commit/ef134824a7f4110ada53ea6c173111a4fa2f48f3 (2.3.6)
CVE-2021-32849 (Gerapy is a distributed crawler management framework. Prior to version ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5de29380efc69f27b721942c55c1e2ba8aef0ba8
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5de29380efc69f27b721942c55c1e2ba8aef0ba8
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230223/416c1fa2/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list