[Git][security-tracker-team/security-tracker][master] Add CVE-2023-32681/requests
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed May 24 13:34:56 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
2955a9ea by Salvatore Bonaccorso at 2023-05-24T14:34:26+02:00
Add CVE-2023-32681/requests
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,6 +1,10 @@
CVE-2023-32697 (SQLite JDBC is a library for accessing and creating SQLite database fi ...)
- xerial-sqlite-jdbc <unfixed>
NOTE: https://github.com/xerial/sqlite-jdbc/security/advisories/GHSA-6phf-6h5g-97j2
+CVE-2023-32681 [ Unintended leak of Proxy-Authorization header]
+ - requests <unfixed>
+ NOTE: https://github.com/psf/requests/security/advisories/GHSA-j8r2-6x86-q33q
+ NOTE: Fixed by: https://github.com/psf/requests/commit/74ea7cf7a6a27a4eeb2ae24e162bcc942a6706d5 (v2.31.0)
CVE-2023-31763 (Weak security in the transmitter of AGShome Smart Alarm v1.0 allows at ...)
NOT-FOR-US: AGShome Smart Alarm
CVE-2023-31762 (Weak security in the transmitter of Digoo DG-HAMB Smart Home Security ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2955a9ea56200db3bf29997dce415651523b5582
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2955a9ea56200db3bf29997dce415651523b5582
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230524/cc4f3bea/attachment.htm>
More information about the debian-security-tracker-commits
mailing list