[Git][security-tracker-team/security-tracker][master] automatic update

Sun Jun 4 21:12:44 BST 2023


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8da9a71a by security tracker role at 2023-06-04T20:12:33+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,13 @@
+CVE-2023-3095 (Improper Access Control in GitHub repository nilsteampassnet/teampass  ...)
+	TODO: check
+CVE-2023-3094 (A vulnerability classified as critical has been found in code-projects ...)
+	TODO: check
+CVE-2015-10111 (A vulnerability was found in Watu Quiz Plugin up to 2.6.7 on WordPress ...)
+	TODO: check
+CVE-2013-10028 (A vulnerability was found in EELV Newsletter Plugin 2.x on WordPress.  ...)
+	TODO: check
+CVE-2013-10027 (A vulnerability was found in Blogger Importer Plugin up to 0.5 on Word ...)
+	TODO: check
 CVE-2023-3091 (** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in Captura u ...)
 	TODO: check
 CVE-2023-3086 (Cross-site Scripting (XSS) - Stored in GitHub repository nilsteampassn ...)
@@ -136174,6 +136184,7 @@ CVE-2021-38187 (An issue was discovered in the anymap crate through 0.12.1 for R
 CVE-2021-38186 (An issue was discovered in the comrak crate before 0.10.1 for Rust. It ...)
 	NOT-FOR-US: Rust crate comrak
 CVE-2021-38185 (GNU cpio through 2.13 allows attackers to execute arbitrary code via a ...)
+	{DLA-3445-1}
 	- cpio 2.13+dfsg-5 (bug #992045)
 	[bullseye] - cpio <no-dsa> (Minor issue)
 	[stretch] - cpio <no-dsa> (Minor issue)
@@ -277909,7 +277920,7 @@ CVE-2019-14867 (A flaw was found in IPA, all 4.6.x versions before 4.6.7, all 4.
 	[buster] - freeipa <no-dsa> (Minor issue; can be fixed via point release)
 	NOTE: https://pagure.io/freeipa/c/4abd2f76d76c4c1a1ec5087ec447f4515b63c2c6
 CVE-2019-14866 (In all versions of cpio before 2.13 does not properly validate input f ...)
-	{DLA-1981-1}
+	{DLA-3445-1 DLA-1981-1}
 	- cpio 2.13+dfsg-1 (low; bug #941412)
 	[stretch] - cpio <no-dsa> (Minor issue)
 	NOTE: https://lists.gnu.org/archive/html/bug-cpio/2019-08/msg00003.html



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8da9a71a8a92b6bcf7a6b1c14ac55c23dc13d86e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8da9a71a8a92b6bcf7a6b1c14ac55c23dc13d86e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230604/901e9398/attachment-0001.htm>
