[Git][security-tracker-team/security-tracker][master] Add upstream commit references for CVE-2023-28686

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Mar 24 05:37:58 GMT 2023



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5da68905 by Salvatore Bonaccorso at 2023-03-24T06:37:27+01:00
Add upstream commit references for CVE-2023-28686

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -391,6 +391,8 @@ CVE-2023-28686 [Insufficient message sender validation in Dino]
 	- dino-im <unfixed> (bug #1033370)
 	NOTE: https://dino.im/security/cve-2023-28686/
 	NOTE: Fixed by: https://github.com/dino/dino/commit/ef8fb0e94ce79d5fde2943e433ad0422eb7f70ec
+	NOTE: Fixed by: https://github.com/dino/dino/commit/baf96d9d9fac7480fed777ac87d917f8dec8f0f6 (v0.4.2)
+	NOTE: Fixed by: https://github.com/dino/dino/commit/e02a443a4eaf02f0ab860b41d0bc7081d4110ab4 (v0.2.3)
 CVE-2023-28685 (Jenkins AbsInt a³ Plugin 1.1.0 and earlier does not configure its ...)
 	NOT-FOR-US: Jenkins plugin
 CVE-2023-28684 (Jenkins remote-jobs-view-plugin Plugin 0.0.3 and earlier does not conf ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5da689057c748e2324a21eb5e34f521bba159d7a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5da689057c748e2324a21eb5e34f521bba159d7a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230324/7afa47c7/attachment-0001.htm>


More information about the debian-security-tracker-commits mailing list