[Git][security-tracker-team/security-tracker][master] CVE-2023-35936/pandoc: Add links to regression commits.

Guilhem Moulin (@guilhem) guilhem at debian.org
Wed Jul 19 17:34:09 BST 2023 


Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker


Commits:
25ec84aa by Guilhem Moulin at 2023-07-19T18:33:19+02:00
CVE-2023-35936/pandoc: Add links to regression commits.

As well as addition of unit tests as follow-up.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2140,7 +2140,11 @@ CVE-2023-35936 (Pandoc is a Haskell library for converting from one markup forma
 	[bookworm] - pandoc <no-dsa> (Minor issue)
 	[bullseye] - pandoc <no-dsa> (Minor issue)
 	NOTE: https://github.com/jgm/pandoc/security/advisories/GHSA-xj5q-fv23-575g
-	NOTE: https://github.com/jgm/pandoc/commit/5e381e3878b5da87ee7542f7e51c3c1a7fd84b89 (3.1.4)
+	NOTE: Fixed by: https://github.com/jgm/pandoc/commit/5e381e3878b5da87ee7542f7e51c3c1a7fd84b89 (3.1.4)
+	NOTE: Regression: https://github.com/jgm/pandoc/commit/54561e9a6667b36a8452b01d2def9e3642013dd6 (3.1.4)
+	NOTE: Regression: https://github.com/jgm/pandoc/commit/df4f13b262f7be5863042f8a5a1c365282c81f07 (3.1.4)
+	NOTE: Tests: https://github.com/jgm/pandoc/commit/fe62da61dfd33e6b4c0c03895c528a47a0405bf7
+	NOTE: Tests: https://github.com/jgm/pandoc/commit/5246f02f0bb9c176a6d2f6e3d0c03407d8a67445
 CVE-2023-3515 (Open Redirect in GitHub repository go-gitea/gitea prior to 1.19.4.)
 	- gitea <removed>
 CVE-2023-3455 (Key management vulnerability on system. Successful exploitation of thi ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/25ec84aaef5ba52ff211dba688229bf3c336c1bf

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/25ec84aaef5ba52ff211dba688229bf3c336c1bf
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230719/0fb67864/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list