[Git][security-tracker-team/security-tracker][master] Add CVE-2023-2848{6,7}/sudo

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Mar 16 10:08:11 GMT 2023



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
17e94768 by Salvatore Bonaccorso at 2023-03-16T11:07:26+01:00
Add CVE-2023-2848{6,7}/sudo

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,9 +1,11 @@
 CVE-2023-28488
 	RESERVED
 CVE-2023-28487 (Sudo before 1.9.13 does not escape control characters in sudoreplay ou ...)
-	TODO: check
+	- sudo 1.9.13p1-1
+	NOTE: https://github.com/sudo-project/sudo/commit/334daf92b31b79ce68ed75e2ee14fca265f029ca
 CVE-2023-28486 (Sudo before 1.9.13 does not escape control characters in log messages. ...)
-	TODO: check
+	- sudo 1.9.13p1-1
+	NOTE: https://github.com/sudo-project/sudo/commit/334daf92b31b79ce68ed75e2ee14fca265f029ca
 CVE-2023-28485
 	RESERVED
 CVE-2023-28484



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/17e94768cae13b0e6a9d1e32764b0f79795ea330

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/17e94768cae13b0e6a9d1e32764b0f79795ea330
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230316/10ca0382/attachment.htm>


More information about the debian-security-tracker-commits mailing list