[Git][security-tracker-team/security-tracker][master] Add CVE-2023-33461/iniparser

Thu Jun 1 10:18:43 BST 2023


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
39203aa1 by Salvatore Bonaccorso at 2023-06-01T11:18:08+02:00
Add CVE-2023-33461/iniparser

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -47,7 +47,8 @@ CVE-2023-33628 (H3C Magic R300 version R300-2100MV100R004 was discovered to cont
 CVE-2023-33627 (H3C Magic R300 version R300-2100MV100R004 was discovered to contain a  ...)
 	NOT-FOR-US: H3C Magic R300
 CVE-2023-33461 (iniparser v4.1 is vulnerable to NULL Pointer Dereference in function i ...)
-	TODO: check
+	- iniparser <unfixed>
+	NOTE: https://github.com/ndevilla/iniparser/issues/144
 CVE-2023-30758 (Cross-site scripting vulnerability in Pleasanter 1.3.38.1 and earlier  ...)
 	NOT-FOR-US: Pleasanter
 CVE-2023-29159 (Directory traversal vulnerability in Starlette versions 0.13.5 and lat ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/39203aa1a83edd40e06295ec7d0f8fa3b8571417

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/39203aa1a83edd40e06295ec7d0f8fa3b8571417
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230601/13deb65b/attachment.htm>
