[Git][security-tracker-team/security-tracker][master] new ATS issues

Moritz Muehlenhoff (@jmm) jmm at debian.org
Tue Oct 17 19:37:51 BST 2023



Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b61509f6 by Moritz Mühlenhoff at 2023-10-17T20:37:21+02:00
new ATS issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -53,7 +53,8 @@ CVE-2023-42497 (Reflected cross-site scripting (XSS) vulnerability on the Export
 CVE-2023-42459 (Fast DDS is a C++ implementation of the DDS (Data Distribution Service ...)
 	TODO: check
 CVE-2023-41752 (Exposure of Sensitive Information to an Unauthorized Actor vulnerabili ...)
-	TODO: check
+	- trafficserver <unfixed>
+	NOTE: https://lists.apache.org/thread/5py8h42mxfsn8l1wy6o41xwhsjlsd87q
 CVE-2023-40852 (SQL Injection vulnerability in Phpgurukul User Registration & Login an ...)
 	NOT-FOR-US: Phpgurukul
 CVE-2023-40851 (Cross Site Scripting (XSS) vulnerability in Phpgurukul User Registrati ...)
@@ -65,7 +66,8 @@ CVE-2023-40373 (IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server
 CVE-2023-40372 (IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 ...)
 	NOT-FOR-US: IBM
 CVE-2023-39456 (Improper Input Validation vulnerability in Apache Traffic Server with  ...)
-	TODO: check
+	- trafficserver <unfixed>
+	NOTE: https://lists.apache.org/thread/5py8h42mxfsn8l1wy6o41xwhsjlsd87q
 CVE-2023-38740 (IBM Db2 for Linux, UNIX, and Windows (includes Db2 Connect Server) 11. ...)
 	NOT-FOR-US: IBM
 CVE-2023-38728 (IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5 ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b61509f6dccd329123b7680c9bb6c2eb26e55eb1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b61509f6dccd329123b7680c9bb6c2eb26e55eb1
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231017/95d624b8/attachment.htm>


More information about the debian-security-tracker-commits mailing list