[Git][security-tracker-team/security-tracker][master] Remove suite annotation for CVE-2023-29453

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5dd186c4 by Salvatore Bonaccorso at 2024-12-09T22:28:31+01:00
Remove suite annotation for CVE-2023-29453

The parser does not complain, but unimportant is a severity here and not
a state to the package. Unfortunately we cannot set the severity as well
on suite level, so unimportant applies here to the whole CVE entry.

Remove just the "invalid" entry but retain the note which Tobi has added
which makes clear why for bullseye there is not impact on the produced
binary packages.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -134567,7 +134567,6 @@ CVE-2023-29454 (Stored or persistent cross-site scripting (XSS) is a type of XSS
 	NOTE: https://support.zabbix.com/browse/ZBX-22985
 CVE-2023-29453 (Templates do not properly consider backticks (`) as Javascript string  ...)
 	- zabbix 1:6.0.23+dfsg-1 (unimportant)
-	[bullseye] - zabbix (unimportant)
 	NOTE: Zabbix in Debian uses Debian Go package
 	NOTE: Zabbix in bullseye does not build the GO Agent2.
 CVE-2023-29452 (Currently, geomap configuration (Administration -> General -> Geograph ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5dd186c4f698a89323bbc5f7e9c63d69cf44299a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5dd186c4f698a89323bbc5f7e9c63d69cf44299a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241209/dbd1b2da/attachment.htm>