[Git][security-tracker-team/security-tracker][master] automatic update

Sat Sep 2 09:12:22 BST 2023


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
453ff0a1 by security tracker role at 2023-09-02T08:12:11+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,5 @@
+CVE-2023-4718 (The Font Awesome 4 Menus plugin for WordPress is vulnerable to Stored  ...)
+	TODO: check
 CVE-2023-4722 (Integer Overflow or Wraparound in GitHub repository gpac/gpac prior to ...)
 	- gpac <unfixed>
 	[buster] - gpac <end-of-life> (EOL in buster LTS)
@@ -9983,7 +9985,7 @@ CVE-2023-35808 (An issue was discovered in SugarCRM Enterprise before 11.0.6 and
 CVE-2014-125106 (Nanopb before 0.3.1 allows size_t overflows in pb_dec_bytes and pb_dec ...)
 	- nanopb <not-affected> (Fixed before initial upload to Debian)
 	NOTE: https://github.com/nanopb/nanopb/commit/d2099cc8f1adb33d427a44a5e32ed27b647c7168 (nanopb-0.3.1)
-CVE-2023-3297
+CVE-2023-3297 (In Ubuntu's accountsservice an unprivileged local attacker can trigger ...)
 	- accountsservice <not-affected> (Ubuntu specific 0010-set-language.patch not applied in Debian)
 	NOTE: https://bugs.launchpad.net/ubuntu/+source/accountsservice/+bug/2024182
 CVE-2023-3295 (The Unlimited Elements For Elementor (Free Widgets, Addons, Templates) ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/453ff0a19ff114670ccd6d7bbdeb7d74041133a2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/453ff0a19ff114670ccd6d7bbdeb7d74041133a2
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230902/42abfeee/attachment-0001.htm>
