[Git][security-tracker-team/security-tracker][master] Add additional tag information for foot issue

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1de45d9a by Salvatore Bonaccorso at 2024-09-27T19:21:45+02:00
Add additional tag information for foot issue

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -90391,8 +90391,8 @@ CVE-2023-XXXX [code execution via malformed XTGETTCAP]
 	- foot 1.15.3-2 (bug #1053115)
 	[bookworm] - foot 1.13.1-2+deb12u1
 	[bullseye] - foot <not-affected> (XTGETTCAP support added later)
-	NOTE: https://codeberg.org/dnkl/foot/commit/8a5f2915e9d327d1517d1da49ce7e2303fe61d36
-	NOTE: Introduced by: https://codeberg.org/dnkl/foot/commit/3fa6bec91213525b031f76a67c6b685912dc6720
+	NOTE: Fixed by: https://codeberg.org/dnkl/foot/commit/8a5f2915e9d327d1517d1da49ce7e2303fe61d36 (1.16.0)
+	NOTE: Introduced by: https://codeberg.org/dnkl/foot/commit/3fa6bec91213525b031f76a67c6b685912dc6720 (1.11.0)
 CVE-2023-5183 (Unsafe deserialization of untrusted JSON allows execution of arbitrary ...)
 	NOT-FOR-US: Illumio
 CVE-2023-4934 (Authorization Bypass Through User-Controlled Key vulnerability in Usta ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1de45d9a3240175571536495f186c9ed899ec1da

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1de45d9a3240175571536495f186c9ed899ec1da
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240927/40ce0ae7/attachment.htm>