[Git][security-tracker-team/security-tracker][master] new cmark-gfm issue

Moritz Muehlenhoff (@jmm) jmm at debian.org
Fri Jul 14 14:56:19 BST 2023 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a0db6945 by Moritz Muehlenhoff at 2023-07-14T15:55:50+02:00
new cmark-gfm issue

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -98,7 +98,19 @@ CVE-2023-37744 (Maid Hiring Management System v1.0 was discovered to contain a c
 CVE-2023-37743 (A cross-site scripting (XSS) vulnerability in Teacher Subject Allocati ...)
 	NOT-FOR-US: Teacher Subject Allocation System
 CVE-2023-37463 (cmark-gfm is an extended version of the C reference implementation of  ...)
-	TODO: check
+	- cmark-gfm <unfixed>
+	[bookworm] - cmark-gfm <no-dsa> (Minor issue)
+	[bullseye] - cmark-gfm <no-dsa> (Minor issue)
+	- python-cmarkgfm <unfixed>
+	[bookworm] - python-cmarkgfm <no-dsa> (Minor issue)
+	[bullseye] - python-cmarkgfm <no-dsa> (Minor issue)
+	- r-cran-commonmark <unfixed>
+	[bookworm] - r-cran-commonmark <no-dsa> (Minor issue)
+	[bullseye] - r-cran-commonmark <no-dsa> (Minor issue)
+	- ruby-commonmarker <unfixed>
+	[bookworm] - ruby-commonmarker <no-dsa> (Minor issue)
+	[bullseye] - ruby-commonmarker <no-dsa> (Minor issue)
+	NOTE: https://github.com/github/cmark-gfm/security/advisories/GHSA-w4qg-3vf7-m9x5
 CVE-2023-37267 (Umbraco is a ASP.NET CMS. Under rare conditions a restart of Umbraco c ...)
 	NOT-FOR-US: Umbraco
 CVE-2023-35833 (An issue was discovered in YSoft SAFEQ 6 Server before 6.0.82. When mo ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a0db69458751dc33acbc3633592787448370ddbb

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a0db69458751dc33acbc3633592787448370ddbb
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230714/c9e0bdf5/attachment.htm>

More information about the debian-security-tracker-commits mailing list