[Git][security-tracker-team/security-tracker][master] CVE-2023-53160/rust-sequoia-openpgp assigned

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Jul 28 18:37:30 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
188cd679 by Salvatore Bonaccorso at 2025-07-28T19:36:34+02:00
CVE-2023-53160/rust-sequoia-openpgp assigned

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -153,8 +153,6 @@ CVE-2025-8241 (A vulnerability, which was classified as critical, was found in 1
 	NOT-FOR-US: 1000 Projects ABC Courier Management System
 CVE-2024-58264 (The serde-json-wasm crate before 1.0.1 for Rust allows stack consumpti ...)
 	NOT-FOR-US: serde-json-wasm crate
-CVE-2023-53160 (The sequoia-openpgp crate before 1.16.0 for Rust allows out-of-bounds  ...)
-	TODO: check
 CVE-2023-53159 (The openssl crate before 0.10.55 for Rust allows an out-of-bounds read ...)
 	TODO: check
 CVE-2023-53158 (The gix-transport crate before 0.36.1 for Rust allows command executio ...)
@@ -199495,7 +199493,7 @@ CVE-2023-2686 (Buffer overflow in Wi-Fi Commissioning MicriumOS example in Silic
 	NOT-FOR-US: Silicon Labs Gecko SDK
 CVE-2023-2683 (A memory leak in the EFR32 Bluetooth LE stack 5.1.0 through 5.1.1 allo ...)
 	NOT-FOR-US: silabs Bluetooth SDK
-CVE-2023-XXXX [RUSTSEC-2023-0038: Out-of-bounds array access leads to panic]
+CVE-2023-53160 [RUSTSEC-2023-0038: Out-of-bounds array access leads to panic]
 	- rust-sequoia-openpgp 1.16.0-1
 	[bookworm] - rust-sequoia-openpgp <no-dsa> (Minor issue)
 	[bullseye] - rust-sequoia-openpgp <no-dsa> (Minor issue)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/188cd679aa249a140549f99e10295959807ba380

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/188cd679aa249a140549f99e10295959807ba380
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250728/150804be/attachment.htm>

More information about the debian-security-tracker-commits mailing list