[Git][security-tracker-team/security-tracker][master] Associate CVE-2023-36308 with golang-github-disintegration-imaging
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Apr 15 18:25:53 BST 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
1bcf8c19 by Salvatore Bonaccorso at 2024-04-15T19:24:34+02:00
Associate CVE-2023-36308 with golang-github-disintegration-imaging
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -46252,7 +46252,8 @@ CVE-2023-36492 (Reflected cross-site scripting vulnerability in SHIRASAGI prior
CVE-2023-36382 (Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Jeff ...)
NOT-FOR-US: WordPress plugin
CVE-2023-36308 (disintegration Imaging 1.6.2 allows attackers to cause a panic (becaus ...)
- NOT-FOR-US: disintegration Imaging
+ - golang-github-disintegration-imaging <unfixed>
+ NOTE: https://github.com/disintegration/imaging/issues/165
CVE-2023-36307 (ZPLGFA 1.1.1 allows attackers to cause a panic (because of an integer ...)
NOT-FOR-US: ZPLGFA
CVE-2023-35906 (IBM Aspera Faspex 5.0.5 could allow a remote attacked to bypass IP res ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1bcf8c19dd90990f02078d3626323dc2071d2e5b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1bcf8c19dd90990f02078d3626323dc2071d2e5b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240415/ad3bf0de/attachment.htm>
More information about the debian-security-tracker-commits
mailing list