[Git][security-tracker-team/security-tracker][master] new synapse issue
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Wed Nov 1 14:13:18 GMT 2023
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
be0a7971 by Moritz Muehlenhoff at 2023-11-01T15:12:18+01:00
new synapse issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -253,7 +253,9 @@ CVE-2023-46235 (FOG is a free open-source cloning/imaging/rescue suite/inventory
CVE-2023-45955 (An issue discovered in Nanoleaf Light strip v3.5.10 allows attackers t ...)
NOT-FOR-US: Nanoleaf Light strip
CVE-2023-43796 (Synapse is an open-source Matrix homeserver Prior to versions 1.95.1 a ...)
- TODO: check
+ - matrix-synapse <unfixed>
+ NOTE: https://github.com/matrix-org/synapse/security/advisories/GHSA-mp92-3jfm-3575
+ NOTE: https://github.com/matrix-org/synapse/commit/daec55e1fe120c564240c5386e77941372bf458f
CVE-2023-42658 (Archive command in Chef InSpec prior to 4.56.58 and 5.22.29 allow loca ...)
NOT-FOR-US: Chef InSpec
CVE-2023-42425 (An issue in Turing Video Turing Edge+ EVC5FD v.1.38.6 allows remote at ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/be0a797113c8d7ee1e963bdcdeb18774a52a407f
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/be0a797113c8d7ee1e963bdcdeb18774a52a407f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231101/496c3427/attachment.htm>
More information about the debian-security-tracker-commits
mailing list