[Git][security-tracker-team/security-tracker][master] CVE-2023-2454,CVE-2023-2455/postgresql: reference patches

Sylvain Beucler (@beuc) beuc at debian.org
Tue Jun 20 09:15:32 BST 2023 


Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4265b5b2 by Sylvain Beucler at 2023-06-20T10:13:19+02:00
CVE-2023-2454,CVE-2023-2455/postgresql: reference patches

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3886,12 +3886,15 @@ CVE-2023-2455 (Row security policies disregard user ID changes after inlining; P
 	- postgresql-13 <removed>
 	- postgresql-11 <removed>
 	NOTE: https://www.postgresql.org/about/news/postgresql-153-148-1311-1215-and-1120-released-2637/
+	NOTE: https://git.postgresql.org/gitweb/?p=postgresql.git;a=commitdiff;h=473626cf00babd829eb15c36b51dfb358d32bc95 (REL_11_20)
 CVE-2023-2454 (schema_element defeats protective search_path changes; It was found th ...)
 	{DSA-5401-1 DLA-3422-1}
 	- postgresql-15 15.3-0+deb12u1
 	- postgresql-13 <removed>
 	- postgresql-11 <removed>
 	NOTE: https://www.postgresql.org/about/news/postgresql-153-148-1311-1215-and-1120-released-2637/
+	NOTE: https://git.postgresql.org/gitweb/?p=postgresql.git;a=commitdiff;h=23cb8eaeb97df350273cb8902e55842a955339c8 (REL_11_20)
+	NOTE: https://git.postgresql.org/gitweb/?p=postgresql.git;a=commitdiff;h=766e061404c2159dccebad4d19e496d8ced8b2c4 (REL_11_20)
 CVE-2023-32668 (LuaTeX before 1.17.0 allows a document (compiled with the default sett ...)
 	- texlive-bin <unfixed> (bug #1036470)
 	[bookworm] - texlive-bin <no-dsa> (Minor issue)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4265b5b2156c8fe58dde2d2012183b31dd914b61

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4265b5b2156c8fe58dde2d2012183b31dd914b61
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230620/f8da8e44/attachment.htm>

More information about the debian-security-tracker-commits mailing list