[Git][security-tracker-team/security-tracker][master] automatic update

Sat Jul 8 09:12:27 BST 2023


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a7cbb839 by security tracker role at 2023-07-08T08:12:16+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,13 @@
+CVE-2023-37270 (Piwigo is open source photo gallery software. Prior to version 13.8.0, ...)
+	TODO: check
+CVE-2023-37269 (Winter is a free, open-source content management system (CMS) based on ...)
+	TODO: check
+CVE-2023-37262 (CC: Tweaked is a mod for Minecraft which adds programmable computers,  ...)
+	TODO: check
+CVE-2023-37261 (OpenComputers is a Minecraft mod that adds programmable computers and  ...)
+	TODO: check
+CVE-2023-32000 (A Cross-Site Scripting (XSS) vulnerability found in UniFi Network (Ver ...)
+	TODO: check
 CVE-2023-3544 (A vulnerability was found in GZ Scripts Time Slot Booking Calendar PHP ...)
 	NOT-FOR-US: GZ Scripts
 CVE-2023-3543 (A vulnerability was found in GZ Scripts Availability Booking Calendar  ...)
@@ -417,7 +427,7 @@ CVE-2023-37212 (Memory safety bugs present in Firefox 114. Some of these bugs sh
 	- firefox 115.0-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-22/#CVE-2023-37212
 CVE-2023-37211 (Memory safety bugs present in Firefox 114, Firefox ESR 102.12, and Thu ...)
-	{DSA-5450-1}
+	{DSA-5450-1 DLA-3484-1}
 	- firefox 115.0-1
 	- firefox-esr 102.13.0esr-1
 	- thunderbird <unfixed>
@@ -431,7 +441,7 @@ CVE-2023-37209 (A use-after-free condition existed in `NotifyOnHistoryReload` wh
 	- firefox 115.0-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-22/#CVE-2023-37209
 CVE-2023-37208 (When opening Diagcab files, Firefox did not warn the user that these f ...)
-	{DSA-5450-1}
+	{DSA-5450-1 DLA-3484-1}
 	- firefox 115.0-1
 	- firefox-esr 102.13.0esr-1
 	- thunderbird <unfixed>
@@ -439,7 +449,7 @@ CVE-2023-37208 (When opening Diagcab files, Firefox did not warn the user that t
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-23/#CVE-2023-37208
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-24/#CVE-2023-37208
 CVE-2023-37207 (A website could have obscured the fullscreen notification by using a U ...)
-	{DSA-5450-1}
+	{DSA-5450-1 DLA-3484-1}
 	- firefox 115.0-1
 	- firefox-esr 102.13.0esr-1
 	- thunderbird <unfixed>
@@ -459,7 +469,7 @@ CVE-2023-37203 (Insufficient validation in the Drag and Drop API in conjunction
 	- firefox 115.0-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-22/#CVE-2023-37203
 CVE-2023-37202 (Cross-compartment wrappers wrapping a scripted proxy could have caused ...)
-	{DSA-5450-1}
+	{DSA-5450-1 DLA-3484-1}
 	- firefox 115.0-1
 	- firefox-esr 102.13.0esr-1
 	- thunderbird <unfixed>
@@ -467,7 +477,7 @@ CVE-2023-37202 (Cross-compartment wrappers wrapping a scripted proxy could have
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-23/#CVE-2023-37202
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-24/#CVE-2023-37202
 CVE-2023-37201 (An attacker could have triggered a use-after-free condition when creat ...)
-	{DSA-5450-1}
+	{DSA-5450-1 DLA-3484-1}
 	- firefox 115.0-1
 	- firefox-esr 102.13.0esr-1
 	- thunderbird <unfixed>



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a7cbb839e13bd156f27484041bec2e5532961530

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a7cbb839e13bd156f27484041bec2e5532961530
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230708/dc5b7b9f/attachment.htm>
