Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits: 340d8569 by Moritz Muehlenhoff at 2023-11-01T14:43:12+01:00 new pypdf issue - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -225,7 +225,11 @@ CVE-2023-46256 (PX4-Autopilot provides PX4 flight control solution for drones. I CVE-2023-46255 (SpiceDB is an open source, Google Zanzibar-inspired database for creat ...) NOT-FOR-US: SpiceDB CVE-2023-46250 (pypdf is a free and open-source pure-python PDF library. An attacker w ...) - TODO: check + - pypdf <not-affected> (Vulnerable code not yet present) + - pypdf2 <not-affected> (Vulnerable code not yet present) + NOTE: https://github.com/py-pdf/pypdf/security/advisories/GHSA-wjcc-cq79-p63f + NOTE: https://github.com/py-pdf/pypdf/pull/2264 + NOTE: https://github.com/py-pdf/pypdf/commit/9b23ac3c9619492570011d551d521690de9a3e2d (3.17.0) CVE-2023-46249 (authentik is an open-source Identity Provider. Prior to versions 2023. ...) NOT-FOR-US: authentik CVE-2023-46248 (Cody is an artificial intelligence (AI) coding assistant. The Cody AI ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/340d856964feafacbcc64101145cda05fef28c01 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/340d856964feafacbcc64101145cda05fef28c01 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits