[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for libssh issues

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue May 9 21:37:18 BST 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
75b34f44 by Salvatore Bonaccorso at 2023-05-09T22:36:38+02:00
Add Debian bug reference for libssh issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -695,9 +695,9 @@ CVE-2023-31208
 	RESERVED
 CVE-2023-31207 (Transmission of credentials within query parameters in Checkmk <= 2.1. ...)
 	- check-mk <removed>
-CVE-2023-2283
+CVE-2023-2283 [Authorization bypass in pki_verify_data_signature]
 	RESERVED
-	- libssh <unfixed>
+	- libssh <unfixed> (bug #1035832)
 	NOTE: https://www.libssh.org/security/advisories/CVE-2023-2283.txt
 	NOTE: https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.10&id=e8dfbb85a28514e1f869dac3000c6cec6cb8d08d (libssh-0.10.5)
 	NOTE: https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.10&id=c68a58575b6d0520e342cb3d3796a8fecd66405d (libssh-0.10.5)
@@ -7230,9 +7230,9 @@ CVE-2023-1668 (A flaw was found in openvswitch (OVS). When processing an IP pack
 	NOTE: https://www.openwall.com/lists/oss-security/2023/04/06/1
 	NOTE: https://github.com/openvswitch/ovs/commit/61b39d8c4797f1b668e4d5e5350d639fca6082a9 (v3.1.1)
 	NOTE: https://github.com/openvswitch/ovs/commit/f36509fd64e339ffd33593451099be6baa12ffe6 (v2.15.8)
-CVE-2023-1667
+CVE-2023-1667 [Potential NULL dereference during rekeying with algorithm guessing]
 	RESERVED
-	- libssh <unfixed>
+	- libssh <unfixed> (bug #1035832)
 	NOTE: https://www.libssh.org/security/advisories/CVE-2023-1667.txt
 	NOTE: https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.10&id=a30339d7b16da7784413e4a4667feb3604ed0458 (libssh-0.10.5)
 	NOTE: https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.10&id=247a4a761cfa745ed1090290c5107de6321143c9 (libssh-0.10.5)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/75b34f44767e67c0899c322d4f008cb28c6469e3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/75b34f44767e67c0899c322d4f008cb28c6469e3
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230509/d4b794d3/attachment.htm>

More information about the debian-security-tracker-commits mailing list