[Git][security-tracker-team/security-tracker][master] new flask-appbuilder issue

Moritz Muehlenhoff (@jmm) jmm at debian.org
Fri Jun 23 15:50:20 BST 2023



Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3386fac7 by Moritz Muehlenhoff at 2023-06-23T16:49:54+02:00
new flask-appbuilder issue

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -31,7 +31,9 @@ CVE-2023-34462 (Netty is an asynchronous event-driven network application framew
 	NOTE: https://github.com/netty/netty/security/advisories/GHSA-6mjq-h674-j845
 	NOTE: https://github.com/netty/netty/commit/535da17e45201ae4278c0479e6162bb4127d4c32
 CVE-2023-34110 (Flask-AppBuilder is an application development framework, built on top ...)
-	TODO: check
+	- flask-appbuilder <unfixed>
+	NOTE: https://github.com/dpgaspar/Flask-AppBuilder/security/advisories/GHSA-jhpr-j7cq-3jp3
+	NOTE: https://github.com/dpgaspar/Flask-AppBuilder/commit/ae25ad4c87a9051ebe4a4e8f02aee73232642626
 CVE-2023-33299 (A deserialization of untrusted data in Fortinet FortiNAC below 7.2.1,  ...)
 	NOT-FOR-US: Fortinet
 CVE-2023-33141 (Yet Another Reverse Proxy (YARP) Denial of Service Vulnerability)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3386fac725070bb919455a7f77d8788c87694f67

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3386fac725070bb919455a7f77d8788c87694f67
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230623/6a2dcb0a/attachment.htm>


More information about the debian-security-tracker-commits mailing list