[Git][security-tracker-team/security-tracker][master] Add reference for CVE-2023-39331
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Oct 23 19:28:03 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
bd1b21e4 by Salvatore Bonaccorso at 2023-10-23T20:27:31+02:00
Add reference for CVE-2023-39331
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -857,6 +857,7 @@ CVE-2023-39332 (Various `node:fs` functions allow specifying paths as either str
NOTE: https://nodejs.org/en/blog/vulnerability/october-2023-security-releases#path-traversal-through-path-stored-in-uint8array-high---cve-2023-39332
CVE-2023-39331 (A previously disclosed vulnerability (CVE-2023-30584) was patched insu ...)
- nodejs <not-affected> (CVE-2023-30584 not insufficiently patched)
+ NOTE: https://nodejs.org/en/blog/vulnerability/october-2023-security-releases#permission-model-improperly-protects-against-path-traversal-high---cve-2023-39331
CVE-2023-39280 (SonicOS p ost-authentication Stack-Based Buffer Overflow vulnerabilit ...)
NOT-FOR-US: SonicOS
CVE-2023-39279 (SonicOS post-authentication Stack-Based Buffer Overflow vulnerability ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bd1b21e44b3dea964c805ebabf200e36c4381e3a
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bd1b21e44b3dea964c805ebabf200e36c4381e3a
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231023/fce3087e/attachment.htm>
More information about the debian-security-tracker-commits
mailing list