[Git][security-tracker-team/security-tracker][master] Process two CVEs for kibana, itp'ed

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d44c36aa by Salvatore Bonaccorso at 2023-05-05T10:22:27+02:00
Process two CVEs for kibana, itp'ed

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,9 +1,9 @@
 CVE-2023-32235 (Ghost before 5.42.1 allows remote attackers to read arbitrary files wi ...)
 	TODO: check
 CVE-2023-31415 (Kibana version 8.7.0 contains an arbitrary code execution flaw. An att ...)
-	TODO: check
+	- kibana <itp> (bug #700337)
 CVE-2023-31414 (Kibana versions 8.0.0 through 8.7.0 contain an arbitrary code executio ...)
-	TODO: check
+	- kibana <itp> (bug #700337)
 CVE-2023-31413 (Filebeat versions through 7.17.9 and 8.6.2 have a flaw in httpjson inp ...)
 	TODO: check
 CVE-2023-2535 (Sensitive information exposure in the Web Frontend of KNIME Business H ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d44c36aa385e7428bfd83fb5be81c7afcc136859

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d44c36aa385e7428bfd83fb5be81c7afcc136859
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230505/a6390428/attachment.htm>