[Git][security-tracker-team/security-tracker][master] bullseye/bookworm triage
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Mon Oct 23 19:45:21 BST 2023
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a159b1c2 by Moritz Muehlenhoff at 2023-10-23T20:45:06+02:00
bullseye/bookworm triage
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -32,6 +32,8 @@ CVE-2023-46319 (WALLIX Bastion 9.x before 9.0.9 and 10.x before 10.0.5 allows un
NOT-FOR-US: WALLIX Bastion
CVE-2023-46317 (Knot Resolver before 5.7.0 performs many TCP reconnections upon receiv ...)
- knot-resolver 5.7.0-1
+ [bookworm] - knot-resolver <no-dsa> (Minor issue)
+ [bullseye] - knot-resolver <no-dsa> (Minor issue)
NOTE: https://www.knot-resolver.cz/2023-08-22-knot-resolver-5.7.0.html
NOTE: https://gitlab.nic.cz/knot/knot-resolver/-/merge_requests/1448
CVE-2023-46315 (The zanllp sd-webui-infinite-image-browsing (aka Infinite Image Browsi ...)
@@ -99,6 +101,8 @@ CVE-2023-39333
NOTE: https://github.com/nodejs/node/commit/eaf9083cf1e43bd897ac8244dcc0f4e3500150ca
CVE-2023-5388
- nss <unfixed>
+ [bookworm] - nss <postponed> (Minor issue, revisit once fixed upstream)
+ [bullseye] - nss <postponed> (Minor issue, revisit once fixed upstream)
NOTE: https://people.redhat.com/~hkario/marvin/
CVE-2023-5551
- moodle <removed>
@@ -303,6 +307,7 @@ CVE-2023-46117 (reconFTW is a tool designed to perform automated recon on a targ
NOT-FOR-US: reconFTW
CVE-2023-45805 (pdm is a Python package and dependency manager supporting the latest P ...)
- pdm <unfixed>
+ [bookworm] - pdm <no-dsa> (Minor issue)
NOTE: https://github.com/pdm-project/pdm/security/advisories/GHSA-j44v-mmf2-xvm9
NOTE: https://github.com/pdm-project/pdm/commit/6853e2642dfa281d4a9958fbc6c95b7e32d84831
CVE-2023-44483 (All versions of Apache Santuario - XML Security for Java prior to 2.2. ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a159b1c2ddd92aa5a4e7578c83e3e06329280710
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a159b1c2ddd92aa5a4e7578c83e3e06329280710
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231023/da7a2af5/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list