[Git][security-tracker-team/security-tracker][master] Add CVE-2023-48052/httpie
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Nov 19 12:40:32 GMT 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
4898b641 by Salvatore Bonaccorso at 2023-11-19T13:40:03+01:00
Add CVE-2023-48052/httpie
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -311,7 +311,8 @@ CVE-2023-48054 (Missing SSL certificate validation in localstack v2.3.2 allows a
CVE-2023-48053 (Archery v1.10.0 uses a non-random or static IV for Cipher Block Chaini ...)
NOT-FOR-US: Archery
CVE-2023-48052 (Missing SSL certificate validation in HTTPie v3.2.2 allows attackers t ...)
- TODO: check
+ - httpie <unfixed>
+ TODO: check details
CVE-2023-47514 (Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in lawrence ...)
NOT-FOR-US: WordPress plugin
CVE-2023-47512 (Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Gravity ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4898b641782f08da761cafa5837ccebcd417a817
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4898b641782f08da761cafa5837ccebcd417a817
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231119/28f30002/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list