[Git][security-tracker-team/security-tracker][master] Mark CVE-2023-5455 as unimportant (modulo experimental)

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Jan 11 08:35:54 GMT 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
cf0c112c by Salvatore Bonaccorso at 2024-01-11T09:35:21+01:00
Mark CVE-2023-5455 as unimportant (modulo experimental)

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -192,11 +192,12 @@ CVE-2024-0310 (A content-security-policy vulnerability in ENS Control browser ex
 CVE-2023-6158 (The EventON - WordPress Virtual Event Calendar Plugin plugin for WordP ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2023-5455 (A Cross-site request forgery vulnerability exists in ipa/session/login ...)
-	- freeipa <unfixed> (bug #1060415)
+	- freeipa <unfixed> (bug #1060415; unimportant)
 	NOTE: https://www.freeipa.org/release-notes/4-10-3.html#highlights-in-4-10-3
 	NOTE: https://www.freeipa.org/release-notes/4-9-14.html#highlights-in-4-9-14
 	NOTE: Fixed by: https://pagure.io/freeipa/c/363fd5de98e883800ac08b2760e8c3150783e7e2 (release-4-10-3)
 	NOTE: Fixed by: https://pagure.io/freeipa/c/9b1a65fe3936c4d3fe237775e54f0249b740f23e (release-4-9-14)
+	NOTE: freeipa-server packages only built with 4.10.2-2+exp1/experimental
 CVE-2023-51972 (Tenda AX1803 v1.0.0.1 was discovered to contain a command injection vu ...)
 	NOT-FOR-US: Tenda
 CVE-2023-51971 (Tenda AX1803 v1.0.0.1 contains a stack overflow via the adv.iptv.stbpv ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cf0c112c635302a801baaa1fbe04f5415d7b597e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cf0c112c635302a801baaa1fbe04f5415d7b597e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240111/86bfbd07/attachment.htm>

More information about the debian-security-tracker-commits mailing list