[Git][security-tracker-team/security-tracker][master] Process two CVEs for electron, itp'ed

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Sep 7 20:22:42 BST 2023



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
042f123d by Salvatore Bonaccorso at 2023-09-07T21:22:00+02:00
Process two CVEs for electron, itp'ed

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -20,7 +20,7 @@ CVE-2023-40392 (A privacy issue was addressed with improved private data redacti
 CVE-2023-39967 (WireMock is a tool for mocking HTTP services. When certain request URL ...)
 	TODO: check
 CVE-2023-39956 (Electron is a framework which lets you write cross-platform desktop ap ...)
-	TODO: check
+	- electron <itp> (bug #842420)
 CVE-2023-39240 (It is identified a format string vulnerability in ASUS RT-AX56U V2\u20 ...)
 	NOT-FOR-US: ASUS
 CVE-2023-39239 (It is identified a format string vulnerability in ASUS RT-AX56U V2\u20 ...)
@@ -21519,7 +21519,7 @@ CVE-2023-29200 (Contao is an open source content management system. Prior to ver
 CVE-2023-29199 (There exists a vulnerability in source code transformer (exception san ...)
 	NOT-FOR-US: Node vm2
 CVE-2023-29198 (Electron is a framework which lets you write cross-platform desktop ap ...)
-	TODO: check
+	- electron <itp> (bug #842420)
 CVE-2023-29197 (guzzlehttp/psr7 is a PSR-7 HTTP message library implementation in PHP. ...)
 	- php-guzzlehttp-psr7 2.4.5-1 (bug #1034581)
 	[bullseye] - php-guzzlehttp-psr7 <no-dsa> (Minor issue; can be fixed via point release)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/042f123d376756d5baeb29020fc1819e9a0123bd

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/042f123d376756d5baeb29020fc1819e9a0123bd
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230907/d210c3c6/attachment.htm>


More information about the debian-security-tracker-commits mailing list