[Git][security-tracker-team/security-tracker][master] Update upstream tags for dlt-daemon commits

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
c8515271 by Salvatore Bonaccorso at 2024-05-16T14:20:01+02:00
Update upstream tags for dlt-daemon commits

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -50286,7 +50286,7 @@ CVE-2023-38552 (When the Node.js policy feature checks 
the integrity of a resour
 CVE-2023-36321 (Connected Vehicle Systems Alliance (COVESA) up to v2.18.8 was 
discover ...)
        - dlt-daemon 2.18.9-1
        NOTE: https://github.com/COVESA/dlt-daemon/issues/436
-       NOTE: 
https://github.com/COVESA/dlt-daemon/commit/8ac9a080bee25e67e49bd138d81c992ce7b6d899
 (2.18.9)
+       NOTE: 
https://github.com/COVESA/dlt-daemon/commit/8ac9a080bee25e67e49bd138d81c992ce7b6d899
 (v2.18.9-alpha)
 CVE-2023-35084 (Unsafe Deserialization of User Input could lead to Execution 
of Unauth ...)
        NOT-FOR-US: Ivanti
 CVE-2023-35083 (Allows an authenticated attacker with network access to read 
arbitrary ...)
@@ -87743,7 +87743,7 @@ CVE-2023-26258 (Arcserve UDP through 9.0.6034 allows 
authentication bypass. The
 CVE-2023-26257 (An issue was discovered in the Connected Vehicle Systems 
Alliance (COV ...)
        - dlt-daemon 2.18.9-1
        NOTE: https://github.com/COVESA/dlt-daemon/issues/440
-       NOTE: 
https://github.com/COVESA/dlt-daemon/commit/b6149e203f919c899fefc702a17fbb78bdec3700
 (2.18.9)
+       NOTE: 
https://github.com/COVESA/dlt-daemon/commit/b6149e203f919c899fefc702a17fbb78bdec3700
 (v2.18.9-alpha)
 CVE-2023-26256 (An unauthenticated path traversal vulnerability affects the 
"STAGIL Na ...)
        NOT-FOR-US: Plugin for Jira
 CVE-2023-26255 (An unauthenticated path traversal vulnerability affects the 
"STAGIL Na ...)
@@ -128628,10 +128628,10 @@ CVE-2022-39838 (Systematic FIX Adapter (ALFAFX) 
2.4.0.25 13/09/2017 allows remot
        NOT-FOR-US: Systematic FIX Adapter (ALFAFX)
 CVE-2022-39837 (An issue was discovered in Connected Vehicle Systems Alliance 
(COVESA) ...)
        - dlt-daemon 2.18.9-1
-       NOTE: 
https://github.com/COVESA/dlt-daemon/commit/855e0017a980d2990c16f7dbf3b4983b48fac272
 (2.18.9)
+       NOTE: 
https://github.com/COVESA/dlt-daemon/commit/855e0017a980d2990c16f7dbf3b4983b48fac272
 (v2.18.9-alpha)
 CVE-2022-39836 (An issue was discovered in Connected Vehicle Systems Alliance 
(COVESA) ...)
        - dlt-daemon 2.18.9-1
-       NOTE: 
https://github.com/COVESA/dlt-daemon/commit/855e0017a980d2990c16f7dbf3b4983b48fac272
 (2.18.9)
+       NOTE: 
https://github.com/COVESA/dlt-daemon/commit/855e0017a980d2990c16f7dbf3b4983b48fac272
 (v2.18.9-alpha)
 CVE-2022-39835 (An issue was discovered in Gajim through 1.4.7. The 
vulnerability allo ...)
        - gajim 1.5.0-1
        [bullseye] - gajim <no-dsa> (Minor issue)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c851527120049681d45d3eb3fe0f16db3b6bfae6

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c851527120049681d45d3eb3fe0f16db3b6bfae6
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits