[Git][security-tracker-team/security-tracker][master] new yt-dlp issue
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Wed Nov 15 09:08:09 GMT 2023
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
3945901f by Moritz Muehlenhoff at 2023-11-15T10:07:43+01:00
new yt-dlp issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -93,7 +93,10 @@ CVE-2023-46580 (Cross-Site Scripting (XSS) vulnerability in Inventory Management
CVE-2023-46132 (Hyperledger Fabric is an open source permissioned distributed ledger f ...)
TODO: check
CVE-2023-46121 (yt-dlp is a youtube-dl fork with additional features and fixes. The Ge ...)
- TODO: check
+ - yt-dlp <unfixed>
+ [bookworm] - yt-dlp <no-dsa> (Minor issue)
+ NOTE: https://github.com/yt-dlp/yt-dlp/security/advisories/GHSA-3ch3-jhc6-5r8x
+ NOTE: https://github.com/yt-dlp/yt-dlp/commit/f04b5bedad7b281bee9814686bba1762bae092eb
CVE-2023-46026 (Cross Site Scripting (XSS) vulnerability in profile.php in phpgurukul ...)
TODO: check
CVE-2023-46025 (SQL Injection vulnerability in teacher-info.php in phpgurukul Teacher ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3945901ff60fb1760ac260b33f02d63c2422e0df
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3945901ff60fb1760ac260b33f02d63c2422e0df
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231115/93498dd1/attachment.htm>
More information about the debian-security-tracker-commits
mailing list