[Git][security-tracker-team/security-tracker][master] Update information for CVE-2023-46361/jbig2dec
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Nov 7 17:14:46 GMT 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
6fdf7f7e by Salvatore Bonaccorso at 2023-11-07T18:13:44+01:00
Update information for CVE-2023-46361/jbig2dec
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1117,6 +1117,8 @@ CVE-2023-46361 (Artifex Software jbig2dec v0.20 was discovered to contain a SEGV
[buster] - jbig2dec <no-dsa> (Minor issue)
NOTE: https://github.com/Frank-Z7/z-vulnerabilitys/blob/main/jbig2dec-SEGV/jbig2dec-SEGV.md
NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=707308
+ NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=705041
+ NOTE: Fixed by: https://github.com/ArtifexSoftware/jbig2dec/commit/ee53a7e4bc7819d32e8c0b2057885bcc97586bf3
CVE-2023-46356 (In the module "CSV Feeds PRO" (csvfeeds) before 2.6.1 from Bl Modules ...)
NOT-FOR-US: PrestaShop module
CVE-2023-46210 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in WebC ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6fdf7f7ef3dec17a0e8c0d801354d957f461d1d3
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6fdf7f7ef3dec17a0e8c0d801354d957f461d1d3
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231107/918147f4/attachment.htm>
More information about the debian-security-tracker-commits
mailing list