[Git][security-tracker-team/security-tracker][master] Add two additional references for CVE-2023-34059/open-vm-tools
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Oct 28 15:23:57 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
24affaac by Salvatore Bonaccorso at 2023-10-28T16:22:39+02:00
Add two additional references for CVE-2023-34059/open-vm-tools
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -224,6 +224,8 @@ CVE-2023-38328 (An issue was discovered in eGroupWare 17.1.20190111. An Improper
- egroupware <removed>
CVE-2023-34059 (open-vm-tools contains a file descriptor hijack vulnerability in the v ...)
- open-vm-tools 2:12.3.5-1 (bug #1054666)
+ NOTE: https://www.openwall.com/lists/oss-security/2023/10/27/2
+ NOTE: https://github.com/vmware/open-vm-tools/blob/CVE-2023-34059.patch/CVE-2023-34059.patch
NOTE: https://www.openwall.com/lists/oss-security/2023/10/27/3
CVE-2023-34058 (VMware Tools contains a SAML token signature bypass vulnerability.A ma ...)
- open-vm-tools 2:12.3.5-1 (bug #1054666)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/24affaace3c93af24c14508c05809be5c69a8db1
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/24affaace3c93af24c14508c05809be5c69a8db1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231028/0bd0c38d/attachment.htm>
More information about the debian-security-tracker-commits
mailing list