[Git][security-tracker-team/security-tracker][master] Add CVE-2023-32685/kanboard
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed May 24 15:01:11 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
12d179ab by Salvatore Bonaccorso at 2023-05-24T16:00:40+02:00
Add CVE-2023-32685/kanboard
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,6 +1,9 @@
CVE-2023-32697 (SQLite JDBC is a library for accessing and creating SQLite database fi ...)
- xerial-sqlite-jdbc <unfixed>
NOTE: https://github.com/xerial/sqlite-jdbc/security/advisories/GHSA-6phf-6h5g-97j2
+CVE-2023-32685 [Clipboard based cross-site scripting (blocked with default CSP)]
+ - kanboard <unfixed>
+ NOTE: https://github.com/kanboard/kanboard/security/advisories/GHSA-hjmw-gm82-r4gv
CVE-2023-32681 [ Unintended leak of Proxy-Authorization header]
- requests <unfixed> (bug #1036693)
NOTE: https://github.com/psf/requests/security/advisories/GHSA-j8r2-6x86-q33q
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/12d179ab4261a83c0b250ae3004e120c977b4b59
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/12d179ab4261a83c0b250ae3004e120c977b4b59
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230524/85268bb7/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list