[Git][security-tracker-team/security-tracker][master] CVE-2023-27372/spip assigned
Guilhem Moulin (@guilhem)
guilhem at debian.org
Tue Feb 28 21:19:56 GMT 2023
Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker
Commits:
4f904c47 by Guilhem Moulin at 2023-02-28T22:19:17+01:00
CVE-2023-27372/spip assigned
- - - - -
2 changed files:
- data/CVE/list
- data/DLA/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -7789,7 +7789,8 @@ CVE-2023-0481 (In RestEasy Reactive implementation of Quarkus the insecure File.
NOT-FOR-US: Quarkus
CVE-2023-0480
RESERVED
-CVE-2023-XXXX [remote code execution vulnerability in public and private spaces]
+CVE-2023-27372 [remote code execution vulnerability in public and private spaces]
+ {DLA-3347-1}
- spip 4.1.8+dfsg-1
[buster] - spip 3.2.4-1+deb10u10
NOTE: https://blog.spip.net/Mise-a-jour-critique-de-securite-sortie-de-SPIP-4-2-1-SPIP-4-1-8-SPIP-4-0-10-et.html
=====================================
data/DLA/list
=====================================
@@ -1,5 +1,5 @@
[27 Feb 2023] DLA-3347-1 spip - security update
- {CVE-2023-24258}
+ {CVE-2023-24258 CVE-2023-27372}
[buster] - spip 3.2.4-1+deb10u10
[27 Feb 2023] DLA-3346-1 python-werkzeug - security update
{CVE-2023-23934 CVE-2023-25577}
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4f904c479241e99ec6702d982b6a0eb68c25a0fa
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4f904c479241e99ec6702d982b6a0eb68c25a0fa
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230228/0b743ee7/attachment.htm>
More information about the debian-security-tracker-commits
mailing list