[Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for CVE-2023-53156/rust-transpose
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Aug 13 19:35:04 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ffc2ae45 by Salvatore Bonaccorso at 2025-08-13T20:34:52+02:00
Track fixed version via unstable for CVE-2023-53156/rust-transpose
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -4205,7 +4205,7 @@ CVE-2023-53158 (The gix-transport crate before 0.36.1 for Rust allows command ex
CVE-2023-53157 (The rosenpass crate before 0.2.1 for Rust allows remote attackers to c ...)
NOT-FOR-US: rosenpass rust crate
CVE-2023-53156 (The transpose crate before 0.2.3 for Rust allows an integer overflow v ...)
- - rust-transpose <unfixed> (bug #1110260)
+ - rust-transpose 0.2.3-1 (bug #1110260)
NOTE: https://rustsec.org/advisories/RUSTSEC-2023-0080.html
NOTE: https://github.com/ejmahler/transpose/issues/11
NOTE: Fixed by: https://github.com/ejmahler/transpose/commit/c4bcd39fabca9a31a401d0cc42d4090869b5a37a (v0.2.3)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ffc2ae451fa561d132579c77ac54482fd32d0672
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ffc2ae451fa561d132579c77ac54482fd32d0672
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250813/d62899eb/attachment.htm>
More information about the debian-security-tracker-commits
mailing list