[Git][security-tracker-team/security-tracker][master] Track fixes in opennds fixed via unstable
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Jan 20 12:23:48 GMT 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a6b31318 by Salvatore Bonaccorso at 2024-01-20T13:23:15+01:00
Track fixes in opennds fixed via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -11588,11 +11588,11 @@ CVE-2023-45382 (In the module "SoNice Retour" (sonice_retour) up to version 2.1.
CVE-2023-42428 (Directory traversal vulnerability in CubeCart prior to 6.5.3 allows a ...)
NOT-FOR-US: CubeCart
CVE-2023-41102 (An issue was discovered in the captive portal in OpenNDS before versio ...)
- - opennds <unfixed> (bug #1059452)
+ - opennds 10.2.0+dfsg-1 (bug #1059452)
NOTE: https://source.sierrawireless.com/-/media/support_downloads/security-bulletins/pdf/swi-psa-2023-006-r3.ashx
NOTE: https://github.com/openNDS/openNDS/commit/69dde77927b252e2a4347170504a785ac5d50c33 (v10.1.3)
CVE-2023-41101 (An issue was discovered in the captive portal in OpenNDS before versio ...)
- - opennds <unfixed> (bug #1059452)
+ - opennds 10.2.0+dfsg-1 (bug #1059452)
NOTE: https://source.sierrawireless.com/-/media/support_downloads/security-bulletins/pdf/swi-psa-2023-006-r3.ashx
NOTE: https://github.com/openNDS/openNDS/commit/69dde77927b252e2a4347170504a785ac5d50c33 (v10.1.3)
CVE-2023-40314 (Cross-site scripting in bootstrap.jsp in multiple versions of OpenNMS ...)
@@ -11608,21 +11608,21 @@ CVE-2023-39545 (CLUSTERPRO X Ver5.1 and earlier and EXPRESSCLUSTER X 5.1 and ear
CVE-2023-39544 (CLUSTERPRO X Ver5.1 and earlier and EXPRESSCLUSTER X 5.1 and earlier, ...)
NOT-FOR-US: CLUSTERPRO
CVE-2023-38324 (An issue was discovered in OpenNDS Captive Portal before version 10.1. ...)
- - opennds <unfixed> (bug #1059451)
+ - opennds 10.2.0+dfsg-1 (bug #1059451)
NOTE: https://source.sierrawireless.com/-/media/support_downloads/security-bulletins/pdf/swi-psa-2023-006-r3.ashx
NOTE: https://github.com/openNDS/openNDS/commit/cd4004fc3cf79c0f2bc0ee98db30d225d0b79bc9 (v10.1.2)
CVE-2023-38323
- opennds <unfixed>
NOTE: https://source.sierrawireless.com/-/media/support_downloads/security-bulletins/pdf/swi-psa-2023-006-r3.ashx
CVE-2023-38322 (An issue was discovered in OpenNDS Captive Portal before version 10.1. ...)
- - opennds <unfixed> (bug #1059451)
+ - opennds 10.2.0+dfsg-1 (bug #1059451)
NOTE: https://source.sierrawireless.com/-/media/support_downloads/security-bulletins/pdf/swi-psa-2023-006-r3.ashx
NOTE: https://github.com/openNDS/openNDS/commit/cd4004fc3cf79c0f2bc0ee98db30d225d0b79bc9 (v10.1.2)
CVE-2023-38321 (OpenNDS, as used in Sierra Wireless ALEOS before 4.17.0.12 and other p ...)
- opennds <unfixed>
NOTE: https://source.sierrawireless.com/-/media/support_downloads/security-bulletins/pdf/swi-psa-2023-006-r3.ashx
CVE-2023-38320 (An issue was discovered in OpenNDS Captive Portal before version 10.1. ...)
- - opennds <unfixed> (bug #1059451)
+ - opennds 10.2.0+dfsg-1 (bug #1059451)
NOTE: https://source.sierrawireless.com/-/media/support_downloads/security-bulletins/pdf/swi-psa-2023-006-r3.ashx
NOTE: https://github.com/openNDS/openNDS/commit/cd4004fc3cf79c0f2bc0ee98db30d225d0b79bc9 (v10.1.2)
CVE-2023-38319
@@ -11635,19 +11635,19 @@ CVE-2023-38317
- opennds <unfixed>
NOTE: https://source.sierrawireless.com/-/media/support_downloads/security-bulletins/pdf/swi-psa-2023-006-r3.ashx
CVE-2023-38316 (An issue was discovered in OpenNDS Captive Portal before version 10.1. ...)
- - opennds <unfixed> (bug #1059451)
+ - opennds 10.2.0+dfsg-1 (bug #1059451)
NOTE: https://source.sierrawireless.com/-/media/support_downloads/security-bulletins/pdf/swi-psa-2023-006-r3.ashx
NOTE: https://github.com/openNDS/openNDS/commit/cd4004fc3cf79c0f2bc0ee98db30d225d0b79bc9 (v10.1.2)
CVE-2023-38315 (An issue was discovered in OpenNDS Captive Portal before version 10.1. ...)
- - opennds <unfixed> (bug #1059451)
+ - opennds 10.2.0+dfsg-1 (bug #1059451)
NOTE: https://source.sierrawireless.com/-/media/support_downloads/security-bulletins/pdf/swi-psa-2023-006-r3.ashx
NOTE: https://github.com/openNDS/openNDS/commit/cd4004fc3cf79c0f2bc0ee98db30d225d0b79bc9 (v10.1.2)
CVE-2023-38314 (An issue was discovered in OpenNDS Captive Portal before version 10.1. ...)
- - opennds <unfixed> (bug #1059451)
+ - opennds 10.2.0+dfsg-1 (bug #1059451)
NOTE: https://source.sierrawireless.com/-/media/support_downloads/security-bulletins/pdf/swi-psa-2023-006-r3.ashx
NOTE: https://github.com/openNDS/openNDS/commit/cd4004fc3cf79c0f2bc0ee98db30d225d0b79bc9 (v10.1.2)
CVE-2023-38313 (An issue was discovered in OpenNDS Captive Portal before 10.1.2. it ha ...)
- - opennds <unfixed> (bug #1059451)
+ - opennds 10.2.0+dfsg-1 (bug #1059451)
NOTE: https://source.sierrawireless.com/-/media/support_downloads/security-bulletins/pdf/swi-psa-2023-006-r3.ashx
NOTE: https://github.com/openNDS/openNDS/commit/cd4004fc3cf79c0f2bc0ee98db30d225d0b79bc9 (v10.1.2)
CVE-2023-38130 (Cross-site request forgery (CSRF) vulnerability in CubeCart prior to 6 ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a6b3131869904b7dc429e1057752eb20728d4376
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a6b3131869904b7dc429e1057752eb20728d4376
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240120/1c074a64/attachment.htm>
More information about the debian-security-tracker-commits
mailing list