[Git][security-tracker-team/security-tracker][master] Add CVE-2023-2089{7,8}/salt
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Sep 6 07:19:30 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
328ce24d by Salvatore Bonaccorso at 2023-09-06T08:18:42+02:00
Add CVE-2023-2089{7,8}/salt
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -56384,9 +56384,11 @@ CVE-2023-20900 (VMware Tools contains a SAML token signature bypass vulnerabilit
CVE-2023-20899 (VMware SD-WAN (Edge) contains a bypass authentication vulnerability. A ...)
NOT-FOR-US: VMware
CVE-2023-20898 (Git Providers can read from the wrong environment because they get the ...)
- TODO: check
+ - salt <unfixed>
+ NOTE: https://saltproject.io/security-announcements/2023-08-10-advisory/
CVE-2023-20897 (Salt masters prior to 3005.2 or 3006.2 contain a DOS in minion return. ...)
- TODO: check
+ - salt <unfixed>
+ NOTE: https://saltproject.io/security-announcements/2023-08-10-advisory/
CVE-2023-20896 (The VMware vCenter Server contains an out-of-bounds read vulnerability ...)
NOT-FOR-US: VMware
CVE-2023-20895 (The VMware vCenter Server contains a memory corruption vulnerability i ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/328ce24dd559431c7282c8eae67800d8c8d01e90
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/328ce24dd559431c7282c8eae67800d8c8d01e90
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230906/e92ffe24/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list