[Git][security-tracker-team/security-tracker][master] automatic update

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9a6445e6 by security tracker role at 2023-05-24T08:11:58+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,25 @@
+CVE-2023-32697 (SQLite JDBC is a library for accessing and creating SQLite database fi ...)
+	TODO: check
+CVE-2023-31763 (Weak security in the transmitter of AGShome Smart Alarm v1.0 allows at ...)
+	TODO: check
+CVE-2023-31762 (Weak security in the transmitter of Digoo DG-HAMB Smart Home Security  ...)
+	TODO: check
+CVE-2023-31761 (Weak security in the transmitter of Blitzwolf BW-IS22 Smart Home Secur ...)
+	TODO: check
+CVE-2023-31759 (Weak Security in the 433MHz keyfob of Kerui W18 Alarm System v1.0 allo ...)
+	TODO: check
+CVE-2023-31747 (Wondershare Filmora 12 (Build 12.2.1.2088) was discovered to contain a ...)
+	TODO: check
+CVE-2023-31726 (AList 3.15.1 is vulnerable to Incorrect Access Control, which can be e ...)
+	TODO: check
+CVE-2023-2859 (Code Injection in GitHub repository nilsteampassnet/teampass prior to  ...)
+	TODO: check
+CVE-2023-2498 (The Go Pricing - WordPress Responsive Pricing Tables plugin for WordPr ...)
+	TODO: check
+CVE-2023-2496 (The Go Pricing - WordPress Responsive Pricing Tables plugin for WordPr ...)
+	TODO: check
+CVE-2023-2494 (The Go Pricing - WordPress Responsive Pricing Tables plugin for WordPr ...)
+	TODO: check
 CVE-2023-32695 [Insufficient validation when decoding a Socket.IO packet]
 	- node-socket.io-parser 4.2.1+~3.1.0-2
 	NOTE: https://github.com/socketio/socket.io-parser/security/advisories/GHSA-cqmj-92xf-r6r9
@@ -10137,8 +10159,8 @@ CVE-2023-28450 (An issue was discovered in Dnsmasq before 2.90. The default maxi
 	[bullseye] - dnsmasq <no-dsa> (Minor issue)
 	[buster] - dnsmasq <no-dsa> (Minor issue)
 	NOTE: https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=eb92fb32b746f2104b0f370b5b295bb8dd4bd5e5
-CVE-2023-1424
-	RESERVED
+CVE-2023-1424 (Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') ...)
+	TODO: check
 CVE-2023-1423
 	RESERVED
 CVE-2023-1422
@@ -11666,8 +11688,8 @@ CVE-2023-28017
 	RESERVED
 CVE-2023-28016
 	RESERVED
-CVE-2023-28015
-	RESERVED
+CVE-2023-28015 (The HCL Domino AppDev Pack IAM service is susceptible to a User Accoun ...)
+	TODO: check
 CVE-2023-28014
 	RESERVED
 CVE-2023-28013
@@ -102649,8 +102671,8 @@ CVE-2022-0358 (A flaw was found in the QEMU virtio-fs shared file system daemon
 	[stretch] - qemu <not-affected> (virtiofsd added in 5.0)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2044863
 	NOTE: https://gitlab.com/qemu-project/qemu/-/commit/449e8171f96a6a944d1f3b7d3627ae059eae21ca
-CVE-2022-0357
-	RESERVED
+CVE-2022-0357 (Unquoted Search Path or Element vulnerability in the Vulnerability Sca ...)
+	TODO: check
 CVE-2022-0356
 	RESERVED
 CVE-2021-4215



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9a6445e6660b71d2c37619de4268be92805bb3bd

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9a6445e6660b71d2c37619de4268be92805bb3bd
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230524/cd60637c/attachment.htm>