[Git][security-tracker-team/security-tracker][master] Add CVE-2015-20109/glibc

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sun Jun 25 21:37:06 BST 2023



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6bdf0e8f by Salvatore Bonaccorso at 2023-06-25T22:36:01+02:00
Add CVE-2015-20109/glibc

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5,7 +5,9 @@ CVE-2023-36632 (The legacy email.utils.parseaddr function in Python through 3.11
 CVE-2023-36630 (In CloudPanel before 2.3.1, insecure file upload leads to privilege es ...)
 	NOT-FOR-US: CloudPanel
 CVE-2015-20109 (end_pattern (called from internal_fnmatch) in the GNU C Library (aka g ...)
-	TODO: check
+	- glibc 2.22-1
+	NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=18036
+	NOTE: https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=c2c6d39fab901c97c18fa3a3a3658d9dc3f7df61 (glibc-2.22)
 CVE-2023-36612 (Directory traversal can occur in the Basecamp com.basecamp.bc3 applica ...)
 	NOT-FOR-US: Basecamp
 CVE-2023-3388 (The Beautiful Cookie Consent Banner for WordPress is vulnerable to Sto ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6bdf0e8f3c492642b9d3af3faf906230182555a3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6bdf0e8f3c492642b9d3af3faf906230182555a3
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230625/f6c99c39/attachment.htm>


More information about the debian-security-tracker-commits mailing list