[Git][security-tracker-team/security-tracker][master] Add CVE-2023-5632/mosquitto

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c7093071 by Salvatore Bonaccorso at 2023-10-18T22:22:32+02:00
Add CVE-2023-5632/mosquitto

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,7 +1,9 @@
 CVE-2023-5642 (Advantech R-SeeNet v2.4.23 allows an unauthenticated remote attacker t ...)
 	NOT-FOR-US: Advantech R-SeeNet
 CVE-2023-5632 (In Eclipse Mosquito before and including 2.0.5, establishing a connect ...)
-	TODO: check
+	- mosquitto 2.0.7-1
+	NOTE: https://github.com/eclipse/mosquitto/pull/2053
+	NOTE: https://github.com/eclipse/mosquitto/commit/18bad1ff32435e523d7507e9b2ce0010124a8f2d (v2.0.6)
 CVE-2023-5631 (Roundcube before 1.4.15, 1.5.x before 1.5.5, and 1.6.x before 1.6.4 al ...)
 	TODO: check
 CVE-2023-4601 (A stack-based buffer overflow vulnerability exists in NI System Config ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c709307170b756ac80ce6384c498c24fad02fa9b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c709307170b756ac80ce6384c498c24fad02fa9b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231018/7d92f87d/attachment.htm>