[Git][security-tracker-team/security-tracker][master] Add CVE-2023-42821/golang-github-gomarkdown-markdown
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Sep 24 16:17:15 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
94f20f02 by Salvatore Bonaccorso at 2023-09-24T17:16:37+02:00
Add CVE-2023-42821/golang-github-gomarkdown-markdown
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -21,7 +21,9 @@ CVE-2023-43270 (dst-admin v1.5.0 was discovered to contain a remote command exec
CVE-2023-43144 (Projectworldsl Assets-management-system-in-php 1.0 is vulnerable to SQ ...)
NOT-FOR-US: Projectworldsl Assets-management-system-in-php
CVE-2023-42821 (The package `github.com/gomarkdown/markdown` is a Go library for parsi ...)
- TODO: check
+ - golang-github-gomarkdown-markdown <unfixed>
+ NOTE: https://github.com/gomarkdown/markdown/commit/14b16010c2ee7ff33a940a541d993bd043a88940
+ NOTE: https://github.com/gomarkdown/markdown/security/advisories/GHSA-m9xq-6h2j-65r2
CVE-2023-42812 (Galaxy is an open-source platform for FAIR data analysis. Prior to ver ...)
TODO: check
CVE-2023-42811 (aes-gcm is a pure Rust implementation of the AES-GCM. Starting in vers ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/94f20f0280580d8f200dbb137e10c882f18c56f0
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/94f20f0280580d8f200dbb137e10c882f18c56f0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230924/eedb76ac/attachment.htm>
More information about the debian-security-tracker-commits
mailing list