[Git][security-tracker-team/security-tracker][master] Add new CVEs for foreman, itp'ed

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Mar 22 06:29:25 GMT 2023



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f87d8778 by Salvatore Bonaccorso at 2023-03-22T07:28:59+01:00
Add new CVEs for foreman, itp'ed

CVE-2023-0462 might be specific in combination with Red Hat Satellite
Server.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -12341,6 +12341,7 @@ CVE-2023-0463 (The force offline MFA prompt setting is not respected when switch
 	NOT-FOR-US: Devolutions Remote Desktop Manager
 CVE-2023-0462
 	RESERVED
+	- foreman <itp> (bug #663101)
 CVE-2023-0461 (There is a use-after-free vulnerability in the Linux Kernel which can  ...)
 	- linux 6.1.7-1
 	NOTE: https://git.kernel.org/linus/2c02d41d71f90a5168391b6a5f2954112ba2307c
@@ -16942,8 +16943,10 @@ CVE-2023-0120
 	RESERVED
 CVE-2023-0119
 	RESERVED
+	- foreman <itp> (bug #663101)
 CVE-2023-0118
 	RESERVED
+	- foreman <itp> (bug #663101)
 CVE-2022-4884 (Path-Traversal in MKP storing in Tribe29 Checkmk <=2.0.0p32 and &lt ...)
 	- check-mk <removed>
 CVE-2022-4883 (A flaw was found in libXpm. When processing files with .Z or .gz exten ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f87d8778393317c84c708c38abb4c6f6a6430e18

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f87d8778393317c84c708c38abb4c6f6a6430e18
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230322/6635aa51/attachment.htm>


More information about the debian-security-tracker-commits mailing list