[Git][security-tracker-team/security-tracker][master] bullseye triage

Moritz Muehlenhoff (@jmm) jmm at debian.org
Wed Mar 8 19:02:21 GMT 2023



Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5990d70b by Moritz Muehlenhoff at 2023-03-08T20:02:07+01:00
bullseye triage

- - - - -


2 changed files:

- data/CVE/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -1608,6 +1608,7 @@ CVE-2023-1099 (A vulnerability was found in SourceCodester Online Student Manage
 	NOT-FOR-US: SourceCodester Online Student Management System
 CVE-2023-27371 (GNU libmicrohttpd before 0.9.76 allows remote DoS (Denial of Service)  ...)
 	- libmicrohttpd 0.9.75-6
+	[bullseye] - libmicrohttpd <no-dsa> (Minor issue)
 	NOTE: https://git.gnunet.org/libmicrohttpd.git/commit/?id=e0754d1638c602382384f1eface30854b1defeec (v0.9.76)
 	NOTE: https://lists.gnu.org/archive/html/libmicrohttpd/2023-02/msg00000.html
 CVE-2023-27370
@@ -3732,6 +3733,7 @@ CVE-2023-22293
 	RESERVED
 CVE-2023-0996 (There is a vulnerability in the strided image data parsing code in the ...)
 	- libheif 1.15.1-1 (bug #1032101)
+	[bullseye] - libheif <no-dsa> (Minor issue)
 	NOTE: https://github.com/strukturag/libheif/pull/759
 	NOTE: https://govtech-csg.github.io/security-advisories/2023/02/24/CVE-2023-0996.html
 CVE-2023-0995 (Cross-site Scripting (XSS) - Stored in GitHub repository unilogies/bum ...)


=====================================
data/dsa-needed.txt
=====================================
@@ -12,7 +12,9 @@ To pick an issue, simply add your uid behind it.
 If needed, specify the release by adding a slash after the name of the source package.
 
 --
-chromium
+apache2 (jmm)
+--
+chromium (jmm)
 --
 jupyter-core
   Maintainer asked for availability to prepare updates



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5990d70b760077ef4d7a7c7bb7441663576bb741

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5990d70b760077ef4d7a7c7bb7441663576bb741
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230308/df080dfd/attachment-0001.htm>


More information about the debian-security-tracker-commits mailing list