[Git][security-tracker-team/security-tracker][master] 4 commits: Mark CVE-2023-2249{6,7}/netdata as no-dsa for buster
Utkarsh Gupta (@utkarsh)
utkarsh at debian.org
Sun Jan 22 22:10:35 GMT 2023
Utkarsh Gupta pushed to branch master at Debian Security Tracker / security-tracker
Commits:
17454138 by Utkarsh Gupta at 2023-01-23T03:37:19+05:30
Mark CVE-2023-2249{6,7}/netdata as no-dsa for buster
- - - - -
4c6244f5 by Utkarsh Gupta at 2023-01-23T03:37:46+05:30
Mark CVE-2021-46872/nim as no-dsa for buster
- - - - -
5be04707 by Utkarsh Gupta at 2023-01-23T03:38:19+05:30
Mark CVE-2022-46176/rust-cargo as no-dsa in buster
- - - - -
4f16ce9f by Utkarsh Gupta at 2023-01-23T03:39:11+05:30
Mark TEMP-1028986-7037E6/sgt-puzzles as no-dsa for buster
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1407,6 +1407,7 @@ CVE-2023-0306 (Cross-site Scripting (XSS) - Stored in GitHub repository thorsten
CVE-2023-XXXX [Multiple integer overflow and buffer overflow issues in game loading]
- sgt-puzzles <unfixed> (bug #1028986)
[bullseye] - sgt-puzzles <no-dsa> (Minor issue)
+ [buster] - sgt-puzzles <no-dsa> (Minor issue)
CVE-2023-0305 (A vulnerability classified as critical was found in SourceCodester Onl ...)
NOT-FOR-US: SourceCodester Online Food Ordering System
CVE-2023-0304 (A vulnerability classified as critical has been found in SourceCodeste ...)
@@ -1794,6 +1795,7 @@ CVE-2022-48256 (Technitium DNS Server before 10.0 allows a self-CNAME denial-of-
CVE-2021-46872 (An issue was discovered in Nim before 1.6.2. The RST module of the Nim ...)
- nim 1.6.2-1
[bullseye] - nim <no-dsa> (Minor issue)
+ [buster] - nim <no-dsa> (Minor issue)
NOTE: https://github.com/nim-lang/Nim/pull/19134
NOTE: https://github.com/nim-lang/Nim/commit/9338aa24977e84a33b9a7802eaff0777fcf4d9c3
CVE-2023-23492 (The Login with Phone Number WordPress Plugin, version < 1.4.2, is a ...)
@@ -4946,10 +4948,12 @@ CVE-2023-22498
CVE-2023-22497 (Netdata is an open source option for real-time infrastructure monitori ...)
- netdata 1.37.0-1
[bullseye] - netdata <no-dsa> (Minor issue)
+ [buster] - netdata <no-dsa> (Minor issue)
NOTE: https://github.com/netdata/netdata/security/advisories/GHSA-jx85-39cw-66f2
CVE-2023-22496 (Netdata is an open source option for real-time infrastructure monitori ...)
- netdata 1.37.0-1
[bullseye] - netdata <no-dsa> (Minor issue)
+ [buster] - netdata <no-dsa> (Minor issue)
NOTE: https://github.com/netdata/netdata/security/advisories/GHSA-xg38-3vmw-2978
CVE-2023-22495 (Izanami is a shared configuration service well-suited for micro-servic ...)
NOT-FOR-US: Izanami
@@ -12878,6 +12882,7 @@ CVE-2022-46176 (Cargo is a Rust package manager. The Rust Security Response WG w
[buster] - cargo <no-dsa> (Minor issue)
- rust-cargo 0.66.0-1
[bullseye] - rust-cargo <no-dsa> (Minor issue)
+ [buster] - rust-cargo <no-dsa> (Minor issue)
NOTE: https://www.openwall.com/lists/oss-security/2023/01/10/3
NOTE: https://github.com/rust-lang/wg-security-response/tree/main/patches/CVE-2022-46176
CVE-2022-46175 (JSON5 is an extension to the popular JSON file format that aims to be ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/1e28fe4bb1032925e2ac6eb78ea27209012d73c4...4f16ce9f2009e1361bfcd923cd79b48197183c9d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/1e28fe4bb1032925e2ac6eb78ea27209012d73c4...4f16ce9f2009e1361bfcd923cd79b48197183c9d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230122/09224af9/attachment.htm>
More information about the debian-security-tracker-commits
mailing list