[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sun Oct 29 20:12:31 GMT 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
190a039c by security tracker role at 2023-10-29T20:12:19+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,7 @@
+CVE-2007-10003 (A vulnerability, which was classified as critical, has been found in T ...)
+	TODO: check
+CVE-2005-10002 (A vulnerability, which was classified as critical, was found in almost ...)
+	TODO: check
 CVE-2023-5840 (Weak Password Recovery Mechanism for Forgotten Password in GitHub repo ...)
 	NOT-FOR-US: LinkStack
 CVE-2023-5839 (Privilege Chaining in GitHub repository hestiacp/hestiacp prior to 1.8 ...)
@@ -1014,7 +1018,7 @@ CVE-2023-39619 (ReDos in NPMJS Node Email Check v.1.0.4 allows an attacker to ca
 CVE-2023-39231 (PingFederate using the PingOne MFA adapter allows a new MFA device to  ...)
 	NOT-FOR-US: PingFederate
 CVE-2023-5732 (An attacker could have created a malicious link using bidirectional ch ...)
-	{DSA-5538-1 DSA-5535-1 DLA-3632-1}
+	{DSA-5538-1 DSA-5535-1 DLA-3637-1 DLA-3632-1}
 	- firefox-esr 115.4.0esr-1
 	- thunderbird 1:115.4.1-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-46/#CVE-2023-5732
@@ -1023,7 +1027,7 @@ CVE-2023-5731 (Memory safety bugs present in Firefox 118. Some of these bugs sho
 	- firefox 119.0-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-45/#CVE-2023-5731
 CVE-2023-5730 (Memory safety bugs present in Firefox 118, Firefox ESR 115.3, and Thun ...)
-	{DSA-5538-1 DSA-5535-1 DLA-3632-1}
+	{DSA-5538-1 DSA-5535-1 DLA-3637-1 DLA-3632-1}
 	- firefox 119.0-1
 	- firefox-esr 115.4.0esr-1
 	- thunderbird 1:115.4.1-1
@@ -1034,7 +1038,7 @@ CVE-2023-5729 (A malicious web site can enter fullscreen mode while simultaneous
 	- firefox 119.0-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-45/#CVE-2023-5729
 CVE-2023-5728 (During garbage collection extra operations were performed on a object  ...)
-	{DSA-5538-1 DSA-5535-1 DLA-3632-1}
+	{DSA-5538-1 DSA-5535-1 DLA-3637-1 DLA-3632-1}
 	- firefox 119.0-1
 	- firefox-esr 115.4.0esr-1
 	- thunderbird 1:115.4.1-1
@@ -1056,7 +1060,7 @@ CVE-2023-5726 (A website could have obscured the full screen notification by usi
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-46/#CVE-2023-5726
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-47/#CVE-2023-5726
 CVE-2023-5725 (A malicious installed WebExtension could open arbitrary URLs, which un ...)
-	{DSA-5538-1 DSA-5535-1 DLA-3632-1}
+	{DSA-5538-1 DSA-5535-1 DLA-3637-1 DLA-3632-1}
 	- firefox 119.0-1
 	- firefox-esr 115.4.0esr-1
 	- thunderbird 1:115.4.1-1
@@ -1064,7 +1068,7 @@ CVE-2023-5725 (A malicious installed WebExtension could open arbitrary URLs, whi
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-46/#CVE-2023-5725
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-47/#CVE-2023-5725
 CVE-2023-5724 (Drivers are not always robust to extremely large draw calls and in som ...)
-	{DSA-5538-1 DSA-5535-1 DLA-3632-1}
+	{DSA-5538-1 DSA-5535-1 DLA-3637-1 DLA-3632-1}
 	- firefox 119.0-1
 	- firefox-esr 115.4.0esr-1
 	- thunderbird 1:115.4.1-1
@@ -1078,7 +1082,7 @@ CVE-2023-5722 (Using iterative requests an attacker was able to learn the size o
 	- firefox 119.0-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-45/#CVE-2023-5722
 CVE-2023-5721 (It was possible for certain browser prompts and dialogs to be activate ...)
-	{DSA-5538-1 DSA-5535-1 DLA-3632-1}
+	{DSA-5538-1 DSA-5535-1 DLA-3637-1 DLA-3632-1}
 	- firefox 119.0-1
 	- firefox-esr 115.4.0esr-1
 	- thunderbird 1:115.4.1-1
@@ -54187,7 +54191,7 @@ CVE-2023-22083 (Vulnerability in the Oracle Enterprise Session Border Controller
 CVE-2023-22082 (Vulnerability in the Oracle Business Intelligence Enterprise Edition p ...)
 	NOT-FOR-US: Oracle
 CVE-2023-22081 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK product of ...)
-	{DSA-5537-1}
+	{DSA-5537-1 DLA-3636-1}
 	- openjdk-8 8u392-ga-1
 	- openjdk-11 11.0.21+9-1
 	- openjdk-17 17.0.9+9-1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/190a039c48b66be4966c08aeed1440aa15edc63f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/190a039c48b66be4966c08aeed1440aa15edc63f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231029/d1174508/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list