[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for xmltooling issue
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Jun 15 05:33:52 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
60956215 by Salvatore Bonaccorso at 2023-06-15T06:33:12+02:00
Add Debian bug reference for xmltooling issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -337,7 +337,7 @@ CVE-2023-29167 (Out-of-bound reads vulnerability exists in FRENIC RHC Loader v1.
CVE-2023-29160 (Stack-based buffer overflow vulnerability exists in FRENIC RHC Loader ...)
TODO: check
CVE-2023-XXXX [Parsing of KeyInfo elements can cause remote resource access]
- - xmltooling <unfixed>
+ - xmltooling <unfixed> (bug #1037948)
NOTE: https://shibboleth.net/community/advisories/secadv_20230612.txt
NOTE: https://git.shibboleth.net/view/?p=cpp-xmltooling.git;a=commit;h=6080f6343f98fec085bc0fd746913ee418cc9d30
CVE-2023-33991 (SAP UI5 Variant Management - versions SAP_UI 750, SAP_UI 754, SAP_UI 7 ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/60956215c51c1abf408b66eec2abc20d78415a7b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/60956215c51c1abf408b66eec2abc20d78415a7b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230615/50ea8bcf/attachment.htm>
More information about the debian-security-tracker-commits
mailing list