[Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Thu Sep 7 09:07:42 BST 2023
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
53a5c80f by Moritz Muehlenhoff at 2023-09-07T10:07:21+02:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -27291,13 +27291,13 @@ CVE-2023-27530 (A DoS vulnerability exists in Rack <v3.0.4.2, <v2.2.6.3, <v2.1.4
NOTE: https://github.com/rack/rack/commit/b632718265fa5ffa547b060331341a1e216b4ffa (v2.1.4.3)
NOTE: https://github.com/rack/rack/commit/5f6e2fcbbdbff2dfaa21baa693e9d23d12ac1459 (v2.0.9.3)
CVE-2023-27526 (A non Admin authenticated user could incorrectly create resources usin ...)
- TODO: check
+ NOT-FOR-US: Apache Superset
CVE-2023-27525 (An authenticated user with Gamma role authorization could have access ...)
NOT-FOR-US: Apache Superset
CVE-2023-27524 (Session Validation attacks in Apache Superset versions up to and inclu ...)
NOT-FOR-US: Apache Superset
CVE-2023-27523 (Improper data authorization check on Jinja templated queries in Apache ...)
- TODO: check
+ NOT-FOR-US: Apache Superset
CVE-2023-27522 (HTTP Response Smuggling vulnerability in Apache HTTP Server via mod_pr ...)
{DSA-5376-1 DLA-3401-1}
- apache2 2.4.56-1 (bug #1032476)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/53a5c80f58973791043a7b43997709c5c889223f
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/53a5c80f58973791043a7b43997709c5c889223f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230907/fd2edddf/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list