[Git][security-tracker-team/security-tracker][master] bullseye/bookworm triage

Moritz Muehlenhoff (@jmm) jmm at debian.org
Tue Nov 28 15:59:48 GMT 2023 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9afdec9f by Moritz Muehlenhoff at 2023-11-28T16:59:29+01:00
bullseye/bookworm triage

- - - - -


2 changed files:

- data/CVE/list
- data/next-oldstable-point-update.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -7320,6 +7320,8 @@ CVE-2023-5554 (Lack of TLS certificate verification in log transmission of a fin
 	NOT-FOR-US: LINE
 CVE-2023-5072 (Denial of Service  in JSON-Java versions up to and including 20230618. ...)
 	- libjson-java <unfixed> (bug #1053882)
+	[bookworm] - libjson-java <no-dsa> (Minor issue)
+	[bullseye] - libjson-java <no-dsa> (Minor issue)
 	[buster] - libjson-java <no-dsa> (Minor issue)
 	- jenkins-json <unfixed> (bug #1053883)
 	[bookworm] - jenkins-json <no-dsa> (Minor issue)
@@ -71351,9 +71353,13 @@ CVE-2022-44012 (An issue was discovered in /DS/LM_API/api/SelectionService/Inser
 	NOT-FOR-US: Simmeth Lieferantenmanager
 CVE-2022-44011 (An issue was discovered in ClickHouse before 22.9.1.2603. An authentic ...)
 	- clickhouse <unfixed>
+	[bookworm] - clickhouse <no-dsa> (Minor issue)
+	[bullseye] - clickhouse <no-dsa> (Minor issue)
 	NOTE: https://github.com/ClickHouse/ClickHouse/pull/40241
 CVE-2022-44010 (An issue was discovered in ClickHouse before 22.9.1.2603. An attacker  ...)
 	- clickhouse <unfixed>
+	[bookworm] - clickhouse <no-dsa> (Minor issue)
+	[bullseye] - clickhouse <no-dsa> (Minor issue)
 	NOTE: https://github.com/ClickHouse/ClickHouse/pull/40292
 CVE-2022-44009 (Improper access control in Key-Value RBAC in StackStorm version 3.7.0  ...)
 	NOT-FOR-US: StackStorm


=====================================
data/next-oldstable-point-update.txt
=====================================
@@ -100,4 +100,3 @@ CVE-2023-43887
 	[bullseye] - libde265 1.0.11-0+deb11u2
 CVE-2023-47471
 	[bullseye] - libde265 1.0.11-0+deb11u2
-CVE-2022-27240



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9afdec9f7f782cfd87ba68516b73cb4f3910a5ac

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9afdec9f7f782cfd87ba68516b73cb4f3910a5ac
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231128/6169154c/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list