[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Mar 5 20:10:41 GMT 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
3e1075e0 by security tracker role at 2023-03-05T20:10:30+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,11 @@
+CVE-2023-1181 (Cross-site Scripting (XSS) - Stored in GitHub repository icret/easyima ...)
+ TODO: check
+CVE-2023-1180 (A vulnerability has been found in SourceCodester Health Center Patient ...)
+ TODO: check
+CVE-2023-1179 (A vulnerability, which was classified as problematic, was found in Sou ...)
+ TODO: check
+CVE-2008-10004
+ RESERVED
CVE-2023-27634
RESERVED
CVE-2023-27633
@@ -210,8 +218,8 @@ CVE-2023-1170 (Heap-based Buffer Overflow in GitHub repository vim/vim prior to
NOTE: https://github.com/vim/vim/commit/1c73b65229c25e3c1fd8824ba958f7cc4d604f9c (v9.0.1376)
CVE-2023-1169
RESERVED
-CVE-2015-10089
- RESERVED
+CVE-2015-10089 (A vulnerability classified as problematic has been found in flame.js. ...)
+ TODO: check
CVE-2023-1168
RESERVED
CVE-2023-1167
@@ -6203,24 +6211,29 @@ CVE-2023-25365
CVE-2023-25364
RESERVED
CVE-2023-25363 (A use-after-free vulnerability in WebCore::RenderLayer::updateDescenda ...)
+ {DSA-5241-1 DSA-5240-1 DLA-3124-1}
- webkit2gtk 2.38.0-1
- wpewebkit 2.38.0-1
NOTE: https://bugs.webkit.org/show_bug.cgi?id=242684
CVE-2023-25362 (A use-after-free vulnerability in WebCore::RenderLayer::repaintBlockSe ...)
+ {DSA-5241-1 DSA-5240-1 DLA-3124-1}
- webkit2gtk 2.38.0-1
- wpewebkit 2.38.0-1
NOTE: https://bugs.webkit.org/show_bug.cgi?id=244802
CVE-2023-25361 (A use-after-free vulnerability in WebCore::RenderLayer::setNextSibling ...)
+ {DSA-5241-1 DSA-5240-1 DLA-3124-1}
- webkit2gtk 2.38.0-1
- wpewebkit 2.38.0-1
NOTE: https://bugs.webkit.org/show_bug.cgi?id=244249
CVE-2023-25360 (A use-after-free vulnerability in WebCore::RenderLayer::renderer in We ...)
+ {DSA-5241-1 DSA-5240-1 DLA-3124-1}
- webkit2gtk 2.38.0-1
- wpewebkit 2.38.0-1
NOTE: https://bugs.webkit.org/show_bug.cgi?id=242686
CVE-2023-25359
RESERVED
CVE-2023-25358 (A use-after-free vulnerability in WebCore::RenderLayer::addChild in We ...)
+ {DSA-5241-1 DSA-5240-1 DLA-3124-1}
- webkit2gtk 2.38.0-1
- wpewebkit 2.38.0-1
NOTE: https://bugs.webkit.org/show_bug.cgi?id=242683
@@ -45774,7 +45787,7 @@ CVE-2022-38727
CVE-2022-38726
RESERVED
CVE-2022-38725 (An integer overflow in the RFC3164 parser in One Identity syslog-ng 3. ...)
- {DLA-3348-1}
+ {DSA-5369-1 DLA-3348-1}
- syslog-ng 3.38.1-1
NOTE: https://github.com/syslog-ng/syslog-ng/security/advisories/GHSA-7932-4fc6-pvmc
NOTE: https://github.com/syslog-ng/syslog-ng/pull/4110
@@ -115682,6 +115695,7 @@ CVE-2021-40243
CVE-2021-40242
RESERVED
CVE-2021-40241 (xfig 3.2.7 is vulnerable to Buffer Overflow. ...)
+ {DLA-3353-1}
- xfig 1:3.2.8a-1 (unimportant; bug #992395)
[bullseye] - xfig 1:3.2.8-3+deb11u1
NOTE: https://sourceforge.net/p/mcj/tickets/136/
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3e1075e0f7aa0bf6e300bf70994287fd5d076396
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3e1075e0f7aa0bf6e300bf70994287fd5d076396
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230305/8d73eef8/attachment.htm>
More information about the debian-security-tracker-commits
mailing list