Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
384a7bb4 by Moritz Muehlenhoff at 2023-11-23T12:04:37+01:00
new cargo issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -14520,7 +14520,15 @@ CVE-2023-40036 (Notepad++ is a free and open-source
source code editor. Versions
CVE-2023-40031 (Notepad++ is a free and open-source source code editor.
Versions 8.5.6 ...)
NOT-FOR-US: Notepad++
CVE-2023-40030 (Cargo downloads a Rust project\u2019s dependencies and
compiles the pr ...)
- TODO: check
+ - cargo <unfixed>
+ [bookworm] - cargo <no-dsa> (Minor issue)
+ [bullseye] - cargo <no-dsa> (Minor issue)
+ - rust-cargo <unfixed>
+ [bookworm] - rust-cargo <no-dsa> (Minor issue)
+ [bullseye] - rust-cargo <no-dsa> (Minor issue)
+ NOTE:
https://github.com/rust-lang/cargo/security/advisories/GHSA-wrrj-h57r-vx9p
+ NOTE: https://github.com/rust-lang/cargo/pull/12291
+ NOTE:
https://github.com/rust-lang/cargo/commit/9835622853f08be9a4b58ebe29dcec8f43b64b33
(0.75.0)
CVE-2023-40022 (Rizin is a UNIX-like reverse engineering framework and
command-line to ...)
NOT-FOR-US: Rizin
CVE-2023-40017 (GeoNode is an open source platform that facilitates the
creation, shar ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/384a7bb46c32fbd70efe50cfcb108f551595c697
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/384a7bb46c32fbd70efe50cfcb108f551595c697
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
