[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Nov 27 08:11:50 GMT 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
37aca15d by security tracker role at 2023-11-27T08:11:38+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,45 @@
+CVE-2023-6313 (A vulnerability was found in SourceCodester URL Shortener 1.0. It has ...)
+ TODO: check
+CVE-2023-6312 (A vulnerability was found in SourceCodester Loan Management System 1.0 ...)
+ TODO: check
+CVE-2023-6311 (A vulnerability was found in SourceCodester Loan Management System 1.0 ...)
+ TODO: check
+CVE-2023-6310 (A vulnerability has been found in SourceCodester Loan Management Syste ...)
+ TODO: check
+CVE-2023-6309 (A vulnerability, which was classified as critical, was found in moses- ...)
+ TODO: check
+CVE-2023-6308 (A vulnerability, which was classified as critical, has been found in X ...)
+ TODO: check
+CVE-2023-6307 (A vulnerability classified as critical was found in jeecgboot JimuRepo ...)
+ TODO: check
+CVE-2023-6306 (A vulnerability classified as critical has been found in SourceCodeste ...)
+ TODO: check
+CVE-2023-6305 (A vulnerability was found in SourceCodester Free and Open Source Inven ...)
+ TODO: check
+CVE-2023-6304 (A vulnerability was found in Tecno 4G Portable WiFi TR118 TR118-M30E-R ...)
+ TODO: check
+CVE-2023-6303 (A vulnerability was found in CSZCMS 1.3.0. It has been classified as p ...)
+ TODO: check
+CVE-2023-6302 (A vulnerability was found in CSZCMS 1.3.0 and classified as critical. ...)
+ TODO: check
+CVE-2023-6301 (A vulnerability has been found in SourceCodester Best Courier Manageme ...)
+ TODO: check
+CVE-2023-6300 (A vulnerability, which was classified as problematic, was found in Sou ...)
+ TODO: check
+CVE-2023-6299 (A vulnerability, which was classified as problematic, has been found i ...)
+ TODO: check
+CVE-2023-6298 (A vulnerability classified as problematic was found in Apryse iText 8. ...)
+ TODO: check
+CVE-2023-6297 (A vulnerability classified as problematic has been found in PHPGurukul ...)
+ TODO: check
+CVE-2023-6296 (A vulnerability was found in osCommerce 4. It has been rated as proble ...)
+ TODO: check
+CVE-2023-49322 (Certain WithSecure products allow a Denial of Service because there is ...)
+ TODO: check
+CVE-2023-49321 (Certain WithSecure products allow a Denial of Service because scanning ...)
+ TODO: check
+CVE-2023-49312 (Precision Bridge PrecisionBridge.exe (aka the thick client) before 7.3 ...)
+ TODO: check
CVE-2023-47039
- perl <not-affected> (Windows specific issue)
CVE-2023-47038 [Write past buffer end via illegal user-defined Unicode property]
@@ -3109,6 +3151,7 @@ CVE-2023-41685 (Improper Neutralization of Special Elements used in an SQL Comma
CVE-2023-41378 (In certain conditions for Calico Typha (v3.26.2, v3.25.1 and below), a ...)
NOT-FOR-US: Calico Typha
CVE-2023-40661 (Several memory vulnerabilities were identified within the OpenSC packa ...)
+ {DLA-3668-1}
- opensc 0.23.0-2 (bug #1055522)
[bookworm] - opensc <no-dsa> (Minor issue)
[bullseye] - opensc <no-dsa> (Minor issue)
@@ -3116,6 +3159,7 @@ CVE-2023-40661 (Several memory vulnerabilities were identified within the OpenSC
NOTE: https://github.com/OpenSC/OpenSC/wiki/CVE-2023-40661
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2240913#c1
CVE-2023-40660 (A flaw was found in OpenSC packages that allow a potential PIN bypass. ...)
+ {DLA-3668-1}
- opensc 0.23.0-2 (bug #1055521)
[bookworm] - opensc <no-dsa> (Minor issue)
[bullseye] - opensc <no-dsa> (Minor issue)
@@ -8694,6 +8738,7 @@ CVE-2023-3701 (Aqua Drive, in its 2.4 version, is vulnerable to a relative path
CVE-2023-3665 (A code injection vulnerability in Trellix ENS 10.7.0 April 2023 releas ...)
NOT-FOR-US: Trellix
CVE-2023-3576 (A memory leak flaw was found in Libtiff's tiffcrop utility. This issue ...)
+ {DSA-5567-1}
- tiff 4.5.1~rc3-1
[buster] - tiff <postponed> (Minor issue, memory leak in CLI tool)
NOTE: https://gitlab.com/libtiff/libtiff/-/merge_requests/475
@@ -18945,13 +18990,13 @@ CVE-2023-32232 (An issue was discovered in Vasion PrinterLogic Client for Window
CVE-2023-32231 (An issue was discovered in Vasion PrinterLogic Client for Windows befo ...)
NOT-FOR-US: Vasion
CVE-2023-41175 (A vulnerability was found in libtiff due to multiple potential integer ...)
- {DLA-3513-1}
+ {DSA-5567-1 DLA-3513-1}
- tiff 4.5.1+git230720-1
NOTE: https://gitlab.com/libtiff/libtiff/-/issues/592
NOTE: https://gitlab.com/libtiff/libtiff/-/commit/6e2dac5f904496d127c92ddc4e56eccfca25c2ee
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2235264
CVE-2023-40745 (LibTIFF is vulnerable to an integer overflow. This flaw allows remote ...)
- {DLA-3513-1}
+ {DSA-5567-1 DLA-3513-1}
- tiff 4.5.1+git230720-1
NOTE: https://gitlab.com/libtiff/libtiff/-/commit/4fc16f649fa2875d5c388cf2edc295510a247ee5
NOTE: https://gitlab.com/libtiff/libtiff/-/issues/591
@@ -45624,8 +45669,8 @@ CVE-2023-25634
RESERVED
CVE-2023-25633
RESERVED
-CVE-2023-25632
- RESERVED
+CVE-2023-25632 (The Android Mobile Whale browser app before 3.0.1.2 allows the attacke ...)
+ TODO: check
CVE-2023-25631
RESERVED
CVE-2023-25630
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/37aca15dea7820eff471cabaa5a928e6c2a31da0
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/37aca15dea7820eff471cabaa5a928e6c2a31da0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231127/193439c7/attachment.htm>
More information about the debian-security-tracker-commits
mailing list