[Git][security-tracker-team/security-tracker][master] 2 commits: Triage CVE-2023-46287 in nagvis for buster LTS.

Chris Lamb (@lamby) lamby at debian.org
Tue Oct 31 19:39:00 GMT 2023



Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d067464a by Chris Lamb at 2023-10-31T20:36:31+01:00
Triage CVE-2023-46287 in nagvis for buster LTS.

- - - - -
83673535 by Chris Lamb at 2023-10-31T20:38:24+01:00
Triage CVE-2023-5388 in nss for buster LTS.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1474,6 +1474,7 @@ CVE-2023-5388
 	- nss <unfixed>
 	[bookworm] - nss <postponed> (Minor issue, revisit once fixed upstream)
 	[bullseye] - nss <postponed> (Minor issue, revisit once fixed upstream)
+	[buster] - nss <no-dsa> (Minor issue)
 	NOTE: https://people.redhat.com/~hkario/marvin/
 CVE-2023-5551
 	- moodle <removed>
@@ -1681,6 +1682,7 @@ CVE-2023-46287 (XSS exists in NagVis before 1.9.38 via the select function in sh
 	- nagvis 1:1.9.38-1
 	[bookworm] - nagvis <no-dsa> (Minor issue)
 	[bullseye] - nagvis <no-dsa> (Minor issue)
+	[buster] - nagvis <no-dsa> (Minor issue)
 	NOTE: https://github.com/NagVis/nagvis/pull/356
 	NOTE: https://github.com/NagVis/nagvis/commit/093c2b0b31001bb74c78452858a0a9d27fa0a9b5 (nagvis-1.9.38)
 CVE-2023-46117 (reconFTW is a tool designed to perform automated recon on a target dom ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/1897a2471b91122c57482ef78371c102963989bc...836735355b2e7b4c44b96c7881efd8cd67c21d53

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/1897a2471b91122c57482ef78371c102963989bc...836735355b2e7b4c44b96c7881efd8cd67c21d53
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231031/caed4665/attachment-0001.htm>


More information about the debian-security-tracker-commits mailing list