[Git][security-tracker-team/security-tracker][master] Add four new issues in kanboard

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Jun 5 21:22:58 BST 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
518bee73 by Salvatore Bonaccorso at 2023-06-05T22:22:28+02:00
Add four new issues in kanboard

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -9,13 +9,21 @@ CVE-2023-3064 (Anonymous user may get the list of existing users managed by the
 CVE-2023-34097 (hoppscotch is an open source API development ecosystem. In versions pr ...)
 	TODO: check
 CVE-2023-33970 (Kanboard is open source project management software that focuses on th ...)
-	TODO: check
+	- kanboard <unfixed>
+	NOTE: https://github.com/kanboard/kanboard/security/advisories/GHSA-wfch-8rhv-v286
+	NOTE: https://github.com/kanboard/kanboard/commit/b501ef44bc28ee9cf603a4fa446ee121d66f652f (v1.2.30)
 CVE-2023-33969 (Kanboard is open source project management software that focuses on th ...)
-	TODO: check
+	- kanboard <unfixed>
+	NOTE: https://github.com/kanboard/kanboard/security/advisories/GHSA-8qvf-9847-gpc9
+	NOTE: https://github.com/kanboard/kanboard/commit/05f1d23d821152cd61536d3b09e522c0f7573e3c (v1.2.30)
 CVE-2023-33968 (Kanboard is open source project management software that focuses on th ...)
-	TODO: check
+	- kanboard <unfixed>
+	NOTE: https://github.com/kanboard/kanboard/security/advisories/GHSA-gf8r-4p6m-v8vr
+	NOTE: https://github.com/kanboard/kanboard/commit/c20be8f5fa26e54005a90c645e80b11481a65053 (v1.2.30)
 CVE-2023-33956 (Kanboard is open source project management software that focuses on th ...)
-	TODO: check
+	- kanboard <unfixed>
+	NOTE: https://github.com/kanboard/kanboard/security/advisories/GHSA-r36m-44gg-wxg2
+	NOTE: https://github.com/kanboard/kanboard/commit/437b141fa2267df36976814e704517f30d2424bd (v1.2.30)
 CVE-2023-33733 (Reportlab up to v3.6.12 allows attackers to execute arbitrary code via ...)
 	TODO: check
 CVE-2023-33693 (A buffer overflow in EasyPlayerPro-Win v3.2.19.0106 to v3.6.19.0823 al ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/518bee73ed8db5fd83f8b183cc70ec54cd8105a2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/518bee73ed8db5fd83f8b183cc70ec54cd8105a2
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230605/66842022/attachment.htm>

More information about the debian-security-tracker-commits mailing list