[Git][security-tracker-team/security-tracker][master] bullseye triage

Mon Mar 20 20:22:18 GMT 2023


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2fd6cae3 by Moritz Muehlenhoff at 2023-03-20T21:22:05+01:00
bullseye triage

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2904,29 +2904,36 @@ CVE-2023-27791
 CVE-2023-27790
 	RESERVED
 CVE-2023-27789 (An issue found in TCPprep v.4.4.3 allows a remote attacker to cause a  ...)
-	- tcpreplay <unfixed>
+	- tcpreplay <unfixed> (unimportant)
 	NOTE: https://github.com/appneta/tcpreplay/issues/784
 	NOTE: https://github.com/appneta/tcpreplay/pull/783
+	NOTE: Crash in CLI tool, no security impact
 CVE-2023-27788 (An issue found in TCPrewrite v.4.4.3 allows a remote attacker to cause ...)
-	- tcpreplay <unfixed>
+	- tcpreplay <unfixed> (unimportant)
 	NOTE: https://github.com/appneta/tcpreplay/issues/786
+	NOTE: Crash in CLI tool, no security impact
 CVE-2023-27787 (An issue found in TCPprep v.4.4.3 allows a remote attacker to cause a  ...)
-	- tcpreplay <unfixed>
+	- tcpreplay <unfixed> (unimportant)
 	NOTE: https://github.com/appneta/tcpreplay/issues/788
+	NOTE: Crash in CLI tool, no security impact
 CVE-2023-27786 (An issue found in TCPprep v.4.4.3 allows a remote attacker to cause a  ...)
-	- tcpreplay <unfixed>
+	- tcpreplay <unfixed> (unimportant)
 	NOTE: https://github.com/appneta/tcpreplay/issues/782
 	NOTE: https://github.com/appneta/tcpreplay/pull/783
+	NOTE: Crash in CLI tool, no security impact
 CVE-2023-27785 (An issue found in TCPreplay TCPprep v.4.4.3 allows a remote attacker t ...)
-	- tcpreplay <unfixed>
+	- tcpreplay <unfixed> (unimportant)
 	NOTE: https://github.com/appneta/tcpreplay/issues/785
+	NOTE: Crash in CLI tool, no security impact
 CVE-2023-27784 (An issue found in TCPReplay v.4.4.3 allows a remote attacker to cause  ...)
-	- tcpreplay <unfixed>
+	- tcpreplay <unfixed> (unimportant)
 	NOTE: https://github.com/appneta/tcpreplay/issues/787
+	NOTE: Crash in CLI tool, no security impact
 CVE-2023-27783 (An issue found in TCPreplay tcprewrite v.4.4.3 allows a remote attacke ...)
-	- tcpreplay <unfixed>
+	- tcpreplay <unfixed> (unimportant)
 	NOTE: https://github.com/appneta/tcpreplay/issues/780
 	NOTE: https://github.com/appneta/tcpreplay/pull/781
+	NOTE: Crash in CLI tool, no security impact
 CVE-2023-27782
 	RESERVED
 CVE-2023-27781 (jpegoptim v1.5.2 was discovered to contain a heap overflow in the opti ...)
@@ -94538,6 +94545,7 @@ CVE-2021-46323 (Espruino 2v11.251 was discovered to contain a SEGV vulnerability
 	NOT-FOR-US: Espruino
 CVE-2021-46322 (Duktape v2.99.99 was discovered to contain a SEGV vulnerability via th ...)
 	- duktape 2.7.0-1
+	[bullseye] - duktape <no-dsa> (Minor issue)
 	NOTE: https://github.com/svaarala/duktape/issues/2448
 	NOTE: https://github.com/svaarala/duktape/pull/2451
 	NOTE: https://github.com/svaarala/duktape/commit/fc75060165a011ff5ec43bfebea0c37a3d1baca1
@@ -128591,6 +128599,7 @@ CVE-2021-36490
 	RESERVED
 CVE-2021-36489 (Buffer Overflow vulnerability in Allegro through 5.2.6 allows attacker ...)
 	- allegro4.4 <unfixed> (bug #1032670)
+	[bullseye] - allegro4.4 <no-dsa> (Minor issue)
 	[buster] - allegro4.4 <no-dsa> (Minor issue)
 	- allegro5 2:5.2.8.0-1
 	[bullseye] - allegro5 <no-dsa> (Minor issue)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2fd6cae3b697677a6b1a3f4006a465037a8c261b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2fd6cae3b697677a6b1a3f4006a465037a8c261b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230320/6531f97a/attachment.htm>
