[Git][security-tracker-team/security-tracker][master] automatic update

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a1c82bbe by security tracker role at 2023-01-29T20:10:21+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,47 @@
+CVE-2023-0571 (A vulnerability has been found in SourceCodester Canteen Management Sy ...)
+	TODO: check
+CVE-2023-0570 (A vulnerability, which was classified as critical, was found in Source ...)
+	TODO: check
+CVE-2023-0569 (Weak Password Requirements in GitHub repository publify/publify prior  ...)
+	TODO: check
+CVE-2023-0568
+	RESERVED
+CVE-2023-0567
+	RESERVED
+CVE-2022-48302
+	RESERVED
+CVE-2022-48301
+	RESERVED
+CVE-2022-48300
+	RESERVED
+CVE-2022-48299
+	RESERVED
+CVE-2022-48298
+	RESERVED
+CVE-2022-48297
+	RESERVED
+CVE-2022-48296
+	RESERVED
+CVE-2022-48295
+	RESERVED
+CVE-2022-48294
+	RESERVED
+CVE-2022-48293
+	RESERVED
+CVE-2022-48292
+	RESERVED
+CVE-2022-48291
+	RESERVED
+CVE-2022-48290
+	RESERVED
+CVE-2022-48289
+	RESERVED
+CVE-2022-48288
+	RESERVED
+CVE-2022-48287
+	RESERVED
+CVE-2022-48286
+	RESERVED
 CVE-2023-24607
 	RESERVED
 CVE-2023-24606
@@ -36,10 +80,10 @@ CVE-2023-0561 (A vulnerability, which was classified as critical, was found in S
 	NOT-FOR-US: SourceCodester Online Tours & Travels Management System
 CVE-2023-0560 (A vulnerability, which was classified as critical, has been found in S ...)
 	NOT-FOR-US: SourceCodester Online Tours & Travels Management System
-CVE-2016-15022
-	RESERVED
-CVE-2009-10003
-	RESERVED
+CVE-2016-15022 (A vulnerability was found in mosbth cimage up to 0.7.18. It has been d ...)
+	TODO: check
+CVE-2009-10003 (A vulnerability was found in capnsquarepants wordcraft up to 0.6. It h ...)
+	TODO: check
 CVE-2023-0559
 	RESERVED
 CVE-2023-0558 (The ContentStudio plugin for WordPress is vulnerable to authorization  ...)
@@ -104129,6 +104173,7 @@ CVE-2021-3807 (ansi-regex is vulnerable to Inefficient Regular Expression Comple
 CVE-2021-3806 (A path traversal vulnerability on Pardus Software Center's "extractArc ...)
 	NOT-FOR-US: Pardus Software Center
 CVE-2021-3805 (object-path is vulnerable to Improperly Controlled Modification of Obj ...)
+	{DLA-3291-1}
 	- node-object-path 0.11.8-1
 	[bullseye] - node-object-path 0.11.5-3+deb11u1
 	[stretch] - node-object-path <end-of-life> (Nodejs in stretch not covered by security support)
@@ -149284,6 +149329,7 @@ CVE-2021-23436 (This affects the package immer before 9.0.6. A type confusion vu
 CVE-2021-23435 (This affects the package clearance before 2.5.0. The vulnerability can ...)
 	NOT-FOR-US: Rails clearance gem
 CVE-2021-23434 (This affects the package object-path before 0.11.6. A type confusion v ...)
+	{DLA-3291-1}
 	- node-object-path 0.11.7-1
 	[bullseye] - node-object-path 0.11.5-3+deb11u1
 	[stretch] - node-object-path <end-of-life> (Nodejs in stretch not covered by security support)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a1c82bbeafae7b789d1b2a9efa93d268bb03bb3f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a1c82bbeafae7b789d1b2a9efa93d268bb03bb3f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230129/823b83df/attachment-0001.htm>