[Git][security-tracker-team/security-tracker][master] automatic update

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
dc9ef86a by security tracker role at 2023-07-28T20:12:23+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,59 @@
+CVE-2023-3598 (Out of bounds read and write in ANGLE in Google Chrome prior to 114.0. ...)
+	TODO: check
+CVE-2023-3488 (Uninitialized buffer in GBL parser in Silicon Labs GSDK v4.3.0 and ear ...)
+	TODO: check
+CVE-2023-39190
+	REJECTED
+CVE-2023-39023 (university compass v2.2.0 and below was discovered to contain a code i ...)
+	TODO: check
+CVE-2023-39022 (oscore v2.2.6 and below was discovered to contain a code injection vul ...)
+	TODO: check
+CVE-2023-39021 (wix-embedded-mysql v4.6.1 and below was discovered to contain a code i ...)
+	TODO: check
+CVE-2023-39020 (stanford-parser v3.9.2 and below was discovered to contain a code inje ...)
+	TODO: check
+CVE-2023-39018 (FFmpeg 0.7.0 and below was discovered to contain a code injection vuln ...)
+	TODO: check
+CVE-2023-39017 (quartz-jobs 2.3.2 and below was discovered to contain a code injection ...)
+	TODO: check
+CVE-2023-39016 (bboss-persistent v6.0.9 and below was discovered to contain a code inj ...)
+	TODO: check
+CVE-2023-39015 (webmagic-extension v0.9.0 and below was discovered to contain a code i ...)
+	TODO: check
+CVE-2023-39013 (Duke v1.2 and below was discovered to contain a code injection vulnera ...)
+	TODO: check
+CVE-2023-39010 (BoofCV 0.42 was discovered to contain a code injection vulnerability v ...)
+	TODO: check
+CVE-2023-38992 (jeecg-boot v3.5.1 was discovered to contain a SQL injection vulnerabil ...)
+	TODO: check
+CVE-2023-38685 (Discourse is an open source discussion platform. Prior to version 3.0. ...)
+	TODO: check
+CVE-2023-38684 (Discourse is an open source discussion platform. Prior to version 3.0. ...)
+	TODO: check
+CVE-2023-38498 (Discourse is an open source discussion platform. Prior to version 3.0. ...)
+	TODO: check
+CVE-2023-37906 (Discourse is an open source discussion platform. Prior to version 3.0. ...)
+	TODO: check
+CVE-2023-37904 (Discourse is an open source discussion platform. Prior to version 3.0. ...)
+	TODO: check
+CVE-2023-37754 (PowerJob v4.3.3 was discovered to contain a remote command execution ( ...)
+	TODO: check
+CVE-2023-37467 (Discourse is an open source discussion platform. Prior to version 3.1. ...)
+	TODO: check
+CVE-2023-31937 (Sql injection vulnerability found in Rail Pass Management System v.1.0 ...)
+	TODO: check
+CVE-2023-31936 (Sql injection vulnerability found in Rail Pass Management System v.1.0 ...)
+	TODO: check
+CVE-2023-31935 (Cross Site Scripting vulnerability found in Rail Pass Management Syste ...)
+	TODO: check
+CVE-2023-31934 (Cross Site Scripting vulnerability found in Rail Pass Management Syste ...)
+	TODO: check
+CVE-2023-31933 (Sql injection vulnerability found in Rail Pass Management System v.1.0 ...)
+	TODO: check
+CVE-2023-31932 (Sql injection vulnerability found in Rail Pass Management System v.1.0 ...)
+	TODO: check
+CVE-2023-2685 (A vulnerability was found in AO-OPC server versions mentioned above. A ...)
+	TODO: check
 CVE-2023-3990 (A vulnerability classified as problematic has been found in Mingsoft M ...)
 	NOT-FOR-US: Mingsoft MCMS
 CVE-2023-3989 (A vulnerability was found in SourceCodester Jewelry Store System 1.0.  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dc9ef86a434dbed81fd2a97f91c45e5f267f851a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dc9ef86a434dbed81fd2a97f91c45e5f267f851a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230728/dd87ab4d/attachment.htm>