[Git][security-tracker-team/security-tracker][master] 2 commits: Triage CVE-2023-46287 in nagvis for buster LTS.
Chris Lamb (@lamby)
lamby at debian.org
Tue Oct 31 19:39:00 GMT 2023
Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d067464a by Chris Lamb at 2023-10-31T20:36:31+01:00
Triage CVE-2023-46287 in nagvis for buster LTS.
- - - - -
83673535 by Chris Lamb at 2023-10-31T20:38:24+01:00
Triage CVE-2023-5388 in nss for buster LTS.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1474,6 +1474,7 @@ CVE-2023-5388
- nss <unfixed>
[bookworm] - nss <postponed> (Minor issue, revisit once fixed upstream)
[bullseye] - nss <postponed> (Minor issue, revisit once fixed upstream)
+ [buster] - nss <no-dsa> (Minor issue)
NOTE: https://people.redhat.com/~hkario/marvin/
CVE-2023-5551
- moodle <removed>
@@ -1681,6 +1682,7 @@ CVE-2023-46287 (XSS exists in NagVis before 1.9.38 via the select function in sh
- nagvis 1:1.9.38-1
[bookworm] - nagvis <no-dsa> (Minor issue)
[bullseye] - nagvis <no-dsa> (Minor issue)
+ [buster] - nagvis <no-dsa> (Minor issue)
NOTE: https://github.com/NagVis/nagvis/pull/356
NOTE: https://github.com/NagVis/nagvis/commit/093c2b0b31001bb74c78452858a0a9d27fa0a9b5 (nagvis-1.9.38)
CVE-2023-46117 (reconFTW is a tool designed to perform automated recon on a target dom ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/1897a2471b91122c57482ef78371c102963989bc...836735355b2e7b4c44b96c7881efd8cd67c21d53
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/1897a2471b91122c57482ef78371c102963989bc...836735355b2e7b4c44b96c7881efd8cd67c21d53
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231031/caed4665/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list