[Git][security-tracker-team/security-tracker][master] automatic update

Mon Jul 3 09:12:21 BST 2023


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
629d7c0b by security tracker role at 2023-07-03T08:12:09+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,21 @@
+CVE-2023-3438 (An unquoted Windows search path vulnerability existed in the install t ...)
+	TODO: check
+CVE-2023-3370
+	REJECTED
+CVE-2023-3314 (A vulnerability arises out of a failure to comprehensively sanitize th ...)
+	TODO: check
+CVE-2023-3313 (An OS common injection vulnerability exists in the ESM certificate API ...)
+	TODO: check
+CVE-2023-36001
+	REJECTED
+CVE-2023-35999
+	REJECTED
+CVE-2023-35700
+	REJECTED
+CVE-2023-35073
+	REJECTED
+CVE-2023-34211
+	REJECTED
 CVE-2023-36674 [Manualthumb bypasses badFile lookup]
 	- mediawiki 1:1.39.4-1
 	NOTE: https://phabricator.wikimedia.org/T335612
@@ -33187,7 +33205,7 @@ CVE-2023-22476 (Mantis Bug Tracker (MantisBT) is an open source issue tracker. I
 CVE-2023-0027 (Rockwell Automation Modbus TCP Server AOI prior to 2.04.00 is vulnerab ...)
 	NOT-FOR-US: Rockwell Automation
 CVE-2022-4854
-	RESERVED
+	REJECTED
 CVE-2022-4853
 	REJECTED
 CVE-2022-4852
@@ -51227,15 +51245,15 @@ CVE-2022-43589 (A null pointer dereference vulnerability exists in the handle_io
 CVE-2022-43588 (A null pointer dereference vulnerability exists in the handle_ioctl_83 ...)
 	NOT-FOR-US: Callback technologies CBFS Filter
 CVE-2022-43587
-	RESERVED
+	REJECTED
 CVE-2022-43586
-	RESERVED
+	REJECTED
 CVE-2022-43585
-	RESERVED
+	REJECTED
 CVE-2022-43584
-	RESERVED
+	REJECTED
 CVE-2022-43583
-	RESERVED
+	REJECTED
 CVE-2022-43582
 	RESERVED
 CVE-2022-43581 (IBM Content Navigator 3.0.0, 3.0.1, 3.0.2, 3.0.3, 3.0.4, 3.0.5, 3.0.6, ...)
@@ -54756,9 +54774,9 @@ CVE-2022-42340 (Adobe ColdFusion versions Update 14 (and earlier) and Update 4 (
 CVE-2022-42339 (Adobe Acrobat Reader versions 22.002.20212 (and earlier) and 20.005.30 ...)
 	NOT-FOR-US: Adobe
 CVE-2022-42338
-	RESERVED
+	REJECTED
 CVE-2022-42337
-	RESERVED
+	REJECTED
 CVE-2022-42336 (Mishandling of guest SSBD selection on AMD hardware The current logic  ...)
 	- xen 4.17.1+2-gb773c48e36-1 (bug #1036298)
 	[bullseye] - xen <not-affected> (Vulnerable code not present)
@@ -69353,7 +69371,7 @@ CVE-2022-2571 (Heap-based Buffer Overflow in GitHub repository vim/vim prior to
 	NOTE: https://github.com/vim/vim/commit/a6f9e300161f4cb54713da22f65b261595e8e614 (v9.0.0102)
 	NOTE: Crash in CLI tool, no security impact
 CVE-2022-2570
-	RESERVED
+	REJECTED
 CVE-2022-37013 (This vulnerability allows remote attackers to create a denial-of-servi ...)
 	NOT-FOR-US: Unified Automation
 CVE-2022-37012 (This vulnerability allows remote attackers to create a denial-of-servi ...)
@@ -112957,7 +112975,7 @@ CVE-2022-22509 (In Phoenix Contact FL SWITCH Series 2xxx in version 3.00 an inco
 CVE-2022-22508 (Improper Input Validation vulnerability in multiple CODESYS V3 product ...)
 	NOT-FOR-US: CODESYS
 CVE-2022-22507
-	RESERVED
+	REJECTED
 CVE-2022-22506
 	RESERVED
 CVE-2022-22505 (IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 contains a v ...)
@@ -225481,7 +225499,7 @@ CVE-2020-15732 (Improper Certificate Validation vulnerability in the Online Thre
 CVE-2020-15731 (An improper Input Validation vulnerability in the code handling file r ...)
 	NOT-FOR-US: Bitdefender
 CVE-2020-15730
-	RESERVED
+	REJECTED
 CVE-2020-15729
 	RESERVED
 CVE-2020-15728



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/629d7c0ba7a9261d574c0fdc7a8d91f9d91f8572

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/629d7c0ba7a9261d574c0fdc7a8d91f9d91f8572
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230703/738f5b95/attachment.htm>
