[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Mar 20 08:10:32 GMT 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
8eb0af4b by security tracker role at 2023-03-20T08:10:21+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,11 +1,17 @@
-CVE-2023-1501
+CVE-2018-25082
RESERVED
-CVE-2023-1500
+CVE-2016-15029
RESERVED
-CVE-2023-1499
- RESERVED
-CVE-2023-1498
+CVE-2012-10009
RESERVED
+CVE-2023-1501 (A vulnerability, which was classified as critical, was found in RockOA ...)
+ TODO: check
+CVE-2023-1500 (A vulnerability, which was classified as problematic, has been found i ...)
+ TODO: check
+CVE-2023-1499 (A vulnerability classified as critical was found in code-projects Simp ...)
+ TODO: check
+CVE-2023-1498 (A vulnerability classified as critical has been found in code-projects ...)
+ TODO: check
CVE-2023-1497 (A vulnerability was found in SourceCodester Simple and Nice Shopping C ...)
NOT-FOR-US: SourceCodester Simple and Nice Shopping Cart Script
CVE-2023-1496 (Cross-site Scripting (XSS) - Reflected in GitHub repository imgproxy/i ...)
@@ -56,8 +62,8 @@ CVE-2023-1486 (A vulnerability classified as problematic was found in Lespeed Wi
NOT-FOR-US: Lespeed WiseCleaner Wise Force Deleter
CVE-2023-1485 (A vulnerability classified as problematic has been found in SourceCode ...)
NOT-FOR-US: SourceCodester Young Entrepreneur E-Negosyo System
-CVE-2022-4933
- RESERVED
+CVE-2022-4933 (A vulnerability, which was classified as critical, has been found in A ...)
+ TODO: check
CVE-2022-48422 (ONLYOFFICE Docs through 7.3 on certain Linux distributions allows loca ...)
NOT-FOR-US: ONLYOFFICE
CVE-2021-46877 (jackson-databind 2.10.x through 2.12.x before 2.12.6 and 2.13.x before ...)
@@ -67,8 +73,8 @@ CVE-2021-46877 (jackson-databind 2.10.x through 2.12.x before 2.12.6 and 2.13.x
NOTE: https://github.com/FasterXML/jackson-databind/issues/3328
NOTE: https://github.com/FasterXML/jackson-databind/commit/3ccde7d938fea547e598fdefe9a82cff37fed5cb (jackson-databind-2.12.6)
NOTE: https://github.com/FasterXML/jackson-databind/commit/3ccde7d938fea547e598fdefe9a82cff37fed5cb (jackson-databind-3.13.1)
-CVE-2015-10096
- RESERVED
+CVE-2015-10096 (A vulnerability, which was classified as critical, was found in Zarthu ...)
+ TODO: check
CVE-2023-28608
RESERVED
CVE-2023-28607 (js/event-graph.js in MISP before 2.4.169 allows XSS via the event-grap ...)
@@ -1380,7 +1386,7 @@ CVE-2023-28177
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-09/#CVE-2023-28177
CVE-2023-28176
RESERVED
- {DSA-5375-1 DSA-5374-1 DLA-3364-1}
+ {DSA-5375-1 DSA-5374-1 DLA-3365-1 DLA-3364-1}
- firefox <unfixed>
- firefox-esr 102.9.0esr-1
- thunderbird 1:102.9.0-1
@@ -1411,7 +1417,7 @@ CVE-2023-28165
RESERVED
CVE-2023-28164
RESERVED
- {DSA-5375-1 DSA-5374-1 DLA-3364-1}
+ {DSA-5375-1 DSA-5374-1 DLA-3365-1 DLA-3364-1}
- firefox <unfixed>
- firefox-esr 102.9.0esr-1
- thunderbird 1:102.9.0-1
@@ -1428,7 +1434,7 @@ CVE-2023-28163
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-11/#CVE-2023-28163
CVE-2023-28162
RESERVED
- {DSA-5375-1 DSA-5374-1 DLA-3364-1}
+ {DSA-5375-1 DSA-5374-1 DLA-3365-1 DLA-3364-1}
- firefox <unfixed>
- firefox-esr 102.9.0esr-1
- thunderbird 1:102.9.0-1
@@ -8063,7 +8069,7 @@ CVE-2023-25753
RESERVED
CVE-2023-25752
RESERVED
- {DSA-5375-1 DSA-5374-1 DLA-3364-1}
+ {DSA-5375-1 DSA-5374-1 DLA-3365-1 DLA-3364-1}
- firefox <unfixed>
- firefox-esr 102.9.0esr-1
- thunderbird 1:102.9.0-1
@@ -8072,7 +8078,7 @@ CVE-2023-25752
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-11/#CVE-2023-25752
CVE-2023-25751
RESERVED
- {DSA-5375-1 DSA-5374-1 DLA-3364-1}
+ {DSA-5375-1 DSA-5374-1 DLA-3365-1 DLA-3364-1}
- firefox <unfixed>
- firefox-esr 102.9.0esr-1
- thunderbird 1:102.9.0-1
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8eb0af4bcc1ae5a71d4dc180b7c89a3c48628c82
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8eb0af4bcc1ae5a71d4dc180b7c89a3c48628c82
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230320/6a3d2108/attachment.htm>
More information about the debian-security-tracker-commits
mailing list