[Git][security-tracker-team/security-tracker][master] CVE-2023-XXXX/spip: Add reference to upstream fixes.
Guilhem Moulin (@guilhem)
guilhem at debian.org
Tue Feb 28 12:36:59 GMT 2023
Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d381eb82 by Guilhem Moulin at 2023-02-28T13:36:40+01:00
CVE-2023-XXXX/spip: Add reference to upstream fixes.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -7623,6 +7623,8 @@ CVE-2023-XXXX [remote code execution vulnerability in public and private spaces]
- spip <unfixed>
[buster] - spip 3.2.4-1+deb10u10
NOTE: https://blog.spip.net/Mise-a-jour-critique-de-securite-sortie-de-SPIP-4-2-1-SPIP-4-1-8-SPIP-4-0-10-et.html
+ NOTE: https://git.spip.net/spip/spip/commit/5aedf49b89415a4df3eb775eee3801a2b4b88266 (3.2)
+ NOTE: https://git.spip.net/spip/spip/commit/96fbeb38711c6706e62457f2b732a652a04a409d (master)
CVE-2023-XXXX [SQL injection, sanitization, and login bypass]
- spip 4.1.7+dfsg-1
[bullseye] - spip 3.2.11-3+deb11u6
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d381eb8278b284e3d532098bda5df1010e3c0b12
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d381eb8278b284e3d532098bda5df1010e3c0b12
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230228/a87afdb6/attachment.htm>
More information about the debian-security-tracker-commits
mailing list