[Git][security-tracker-team/security-tracker][master] Add CVE-2023-5631/roundcube
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Oct 18 21:23:40 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
aad4454b by Salvatore Bonaccorso at 2023-10-18T22:23:06+02:00
Add CVE-2023-5631/roundcube
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5,7 +5,8 @@ CVE-2023-5632 (In Eclipse Mosquito before and including 2.0.5, establishing a co
NOTE: https://github.com/eclipse/mosquitto/pull/2053
NOTE: https://github.com/eclipse/mosquitto/commit/18bad1ff32435e523d7507e9b2ce0010124a8f2d (v2.0.6)
CVE-2023-5631 (Roundcube before 1.4.15, 1.5.x before 1.5.5, and 1.6.x before 1.6.4 al ...)
- TODO: check
+ - roundcube 1.6.4+dfsg-1 (bug #1054079)
+ NOTE: https://github.com/roundcube/roundcubemail/commit/41756cc3331b495cc0b71886984474dc529dd31d (1.6.4)
CVE-2023-4601 (A stack-based buffer overflow vulnerability exists in NI System Config ...)
TODO: check
CVE-2023-46009 (gifsicle-1.94 was found to have a floating point exception (FPE) vulne ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/aad4454bfd28de6844d1c30f4c18c86d17d93a9b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/aad4454bfd28de6844d1c30f4c18c86d17d93a9b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231018/ade483ae/attachment.htm>
More information about the debian-security-tracker-commits
mailing list