[Git][security-tracker-team/security-tracker][master] Add CVE-2023-44483/libxml-security-java

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Oct 21 15:59:43 BST 2023



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
60d8887d by Salvatore Bonaccorso at 2023-10-21T16:58:56+02:00
Add CVE-2023-44483/libxml-security-java

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -113,7 +113,10 @@ CVE-2023-45805 (pdm is a Python package and dependency manager supporting the la
 	NOTE: https://github.com/pdm-project/pdm/security/advisories/GHSA-j44v-mmf2-xvm9
 	NOTE: https://github.com/pdm-project/pdm/commit/6853e2642dfa281d4a9958fbc6c95b7e32d84831
 CVE-2023-44483 (All versions of Apache Santuario - XML Security for Java prior to 2.2. ...)
-	TODO: check
+	- libxml-security-java <unfixed>
+	NOTE: https://www.openwall.com/lists/oss-security/2023/10/20/5
+	NOTE: https://lists.apache.org/thread/vmqbp9mfxtrf0kmbnnmbn3h9j6dr9q55
+	NOTE: https://santuario.apache.org/secadv.data/CVE-2023-44483.txt.asc
 CVE-2023-44256 (A server-side request forgery vulnerability [CWE-918] in Fortinet Fort ...)
 	TODO: check
 CVE-2023-3965 (The nsc theme for WordPress is vulnerable to Reflected Cross-Site Scri ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/60d8887d123605445110caabe280bc0132f616de

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/60d8887d123605445110caabe280bc0132f616de
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231021/e8548fdb/attachment.htm>


More information about the debian-security-tracker-commits mailing list