[Git][security-tracker-team/security-tracker][master] buster/bullseye triage
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Sun Jun 11 14:12:28 BST 2023
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
67a2c04a by Moritz Muehlenhoff at 2023-06-11T15:12:02+02:00
buster/bullseye triage
- - - - -
2 changed files:
- data/CVE/list
- data/dsa-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -936,6 +936,8 @@ CVE-2023-32310 (DataEase is an open source data visualization and analysis tool.
NOT-FOR-US: DataEase
CVE-2023-32181 (A Buffer Copy without Checking Size of Input ('Classic Buffer Overflow ...)
- libeconf <unfixed>
+ [bookworm] - libeconf <no-dsa> (Minor issue)
+ [bullseye] - libeconf <no-dsa> (Minor issue)
NOTE: https://github.com/openSUSE/libeconf/issues/178
NOTE: https://github.com/openSUSE/libeconf/commit/8d086dfc69d4299e55e4844e3573b3a4cf420f19 (v0.5.2)
CVE-2015-10109 (A vulnerability was found in Video Playlist and Gallery Plugin up to 1 ...)
@@ -8720,6 +8722,7 @@ CVE-2023-1907
RESERVED
CVE-2023-1906 (A heap-based buffer overflow issue was discovered in ImageMagick's Imp ...)
- imagemagick <unfixed> (bug #1034373)
+ [bookworm] - imagemagick <no-dsa> (Minor issue)
[bullseye] - imagemagick <no-dsa> (Minor issue)
[buster] - imagemagick <no-dsa> (Minor issue)
NOTE: https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-35q2-86c7-9247
@@ -29750,6 +29753,8 @@ CVE-2023-22665 (There is insufficient checking of user queries in Apache Jena ve
NOTE: https://lists.apache.org/thread/s0dmpsxcwqs57l4qfs415klkgmhdxq7s
CVE-2023-22652 (A Buffer Copy without Checking Size of Input ('Classic Buffer Overflow ...)
- libeconf <unfixed>
+ [bookworm] - libeconf <no-dsa> (Minor issue)
+ [bullseye] - libeconf <no-dsa> (Minor issue)
NOTE: https://github.com/openSUSE/libeconf/issues/177
NOTE: https://github.com/openSUSE/libeconf/commit/8d086dfc69d4299e55e4844e3573b3a4cf420f19 (v0.5.2)
CVE-2023-22651 (Improper Privilege Management vulnerability in SUSE Rancher allows Pri ...)
=====================================
data/dsa-needed.txt
=====================================
@@ -35,6 +35,10 @@ openjdk-17 (jmm)
--
owslib/oldstable (aron)
--
+php7.4/oldstable (jmm)
+--
+php8.2/stable (jmm)
+--
php-cas/oldstable
--
php-horde-mime-viewer/oldstable
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/67a2c04a691b655c0adf440e6af8e840417215cd
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/67a2c04a691b655c0adf440e6af8e840417215cd
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230611/a3f1e560/attachment.htm>
More information about the debian-security-tracker-commits
mailing list