[Git][security-tracker-team/security-tracker][master] Add CVE-2023-7258/golang-gvisor-gvisor
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon May 20 19:26:40 BST 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a62326ff by Salvatore Bonaccorso at 2024-05-20T20:26:20+02:00
Add CVE-2023-7258/golang-gvisor-gvisor
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2667,7 +2667,8 @@ CVE-2024-20257 (A vulnerability in the web-based management interface of Cisco A
CVE-2024-20256 (A vulnerability in the web-based management interface of Cisco AsyncOS ...)
NOT-FOR-US: Cisco
CVE-2023-7258 (A denial of service exists in Gvisor Sandbox where a bug in reference ...)
- TODO: check
+ - golang-gvisor-gvisor <unfixed>
+ NOTE: https://github.com/google/gvisor/commit/6a112c60a257dadac59962e0bc9e9b5aee70b5b6
CVE-2023-6324 (ThroughTek Kalay SDK uses a predictable PSK value in the DTLS session ...)
NOT-FOR-US: ThroughTek Kalay SDK
CVE-2023-6323 (ThroughTek Kalay SDK does not verify the authenticity of received mess ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a62326ff72d338d29e7b616e51764e86b17c0004
--
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a62326ff72d338d29e7b616e51764e86b17c0004
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240520/020bfd0b/attachment.htm>
More information about the debian-security-tracker-commits
mailing list