[Git][security-tracker-team/security-tracker][master] Add two new gradle CVEs

Sat Jul 1 20:08:04 BST 2023


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
7dd03cd2 by Salvatore Bonaccorso at 2023-07-01T21:07:30+02:00
Add two new gradle CVEs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -19,9 +19,15 @@ CVE-2023-36812 (OpenTSDB is a open source, distributed, scalable Time Series Dat
 CVE-2023-36144 (An authentication bypass in Intelbras Switch SG 2404 MR in firmware 1. ...)
 	NOT-FOR-US: Intelbras
 CVE-2023-35947 (Gradle is a build tool with a focus on build automation and support fo ...)
-	TODO: check
+	- gradle <undetermined>
+	NOTE: https://github.com/gradle/gradle/security/advisories/GHSA-84mw-qh6q-v842
+	NOTE: https://github.com/gradle/gradle/commit/1096b309520a8c315e3b6109a6526de4eabcb879 (v8.2.0-RC3)
+	NOTE: https://github.com/gradle/gradle/commit/2e5c34d57d0c0b7f0e8b039a192b91e5c8249d91 (v8.2.0-RC3)
 CVE-2023-35946 (Gradle is a build tool with a focus on build automation and support fo ...)
-	TODO: check
+	- gradle <undetermined>
+	NOTE: https://github.com/gradle/gradle/security/advisories/GHSA-2h6c-rv6q-494v
+	NOTE: https://github.com/gradle/gradle/commit/859eae2b2acf751ae7db3c9ffefe275aa5da0d5d (v8.2.0-RC3)
+	NOTE: https://github.com/gradle/gradle/commit/b07e528feb3a5ffa66bdcc358549edd73e4c8a12 (v8.2.0-RC3)
 CVE-2023-33298 (com.perimeter81.osx.HelperTool in Perimeter81 10.0.0.19 on macOS allow ...)
 	NOT-FOR-US: Perimeter81
 CVE-2023-31997 (UniFi OS 3.1 introduces a misconfiguration on consoles running UniFi N ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7dd03cd222b142335cccdb9aafbbf06cb5cda28a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7dd03cd222b142335cccdb9aafbbf06cb5cda28a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230701/2bf58f3c/attachment.htm>
