[Git][security-tracker-team/security-tracker][master] Add CVE-2023-41051/rust-vm-memory

Sat Sep 2 09:25:47 BST 2023


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
988834d6 by Salvatore Bonaccorso at 2023-09-02T10:25:14+02:00
Add CVE-2023-41051/rust-vm-memory

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -42,7 +42,9 @@ CVE-2023-41627 (O-RAN Software Community ric-plt-lib-rmr v4.9.0 does not validat
 CVE-2023-41364 (In tine through 2023.01.14.325, the sort parameter of the /index.php e ...)
 	TODO: check
 CVE-2023-41051 (In a typical Virtual Machine Monitor (VMM) there are several component ...)
-	TODO: check
+	- rust-vm-memory <unfixed>
+	NOTE: https://github.com/rust-vmm/vm-memory/security/advisories/GHSA-49hh-fprx-m68g
+	NOTE: https://github.com/rust-vmm/vm-memory/commit/aff1dd4a5259f7deba56692840f7a2d9ca34c9c8 (v0.12.2)
 CVE-2023-41049 (@dcl/single-sign-on-client is an open source npm library which deals w ...)
 	TODO: check
 CVE-2023-41046 (XWiki Platform is a generic wiki platform offering runtime services fo ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/988834d683be99e8895e7fbf20da5be4a206892f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/988834d683be99e8895e7fbf20da5be4a206892f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230902/0b68ddff/attachment.htm>
