[Git][security-tracker-team/security-tracker][master] Track fixed version for gst-plugins-ugly1.0 via unstable
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 76d70659 by Salvatore Bonaccorso at 2023-08-16T07:31:00+02:00 Track fixed version for gst-plugins-ugly1.0 via unstable - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -509,7 +509,7 @@ CVE-2023-29151 (Uncontrolled search path element in some Intel(R) PSR SDK before CVE-2023-27887 (Improper initialization in BIOS firmware for some Intel(R) NUCs may al ...) NOT-FOR-US: Intel CVE-2023- [ZDI-CAN-21444: Integer overflow leading to heap overwrite in RealMedia file handling] - - gst-plugins-ugly1.0 (bug #1043501) + - gst-plugins-ugly1.0 1.22.5-1 (bug #1043501) [bookworm] - gst-plugins-ugly1.0 1.22.0-2+deb12u1 [bullseye] - gst-plugins-ugly1.0 1.18.4-2+deb11u1 - gst-plugins-ugly0.10 @@ -518,7 +518,7 @@ CVE-2023- [ZDI-CAN-21444: Integer overflow leading to heap overwrite in Real NOTE: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/67e38cf47b7683586c24de18d8253029042dc72f NOTE: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/eb89e0a13eeb59fc5bab787ded50faf6a50087e3 (1.22.5) CVE-2023- [ZDI-CAN-21443: Integer overflow leading to heap overwrite in RealMedia file handling] - - gst-plugins-ugly1.0 (bug #1043501) + - gst-plugins-ugly1.0 1.22.5-1 (bug #1043501) [bookworm] - gst-plugins-ugly1.0 1.22.0-2+deb12u1 [bullseye] - gst-plugins-ugly1.0 1.18.4-2+deb11u1 - gst-plugins-ugly0.10 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/76d70659e80e3fa4b3fa4e099ff137793033b4e1 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/76d70659e80e3fa4b3fa4e099ff137793033b4e1 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Track fixed version for fastdds issue via unstable
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: abdc9792 by Salvatore Bonaccorso at 2023-08-16T07:00:38+02:00 Track fixed version for fastdds issue via unstable - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -398,15 +398,15 @@ CVE-2023-39948 (eprosima Fast DDS is a C++ implementation of the Data Distributi NOTE: https://github.com/eProsima/Fast-DDS/security/advisories/GHSA-x9pj-vrgf-f68f NOTE: https://github.com/eProsima/Fast-DDS/issues/3422 CVE-2023-39947 (eprosima Fast DDS is a C++ implementation of the Data Distribution Ser ...) - - fastdds (bug #1043548) + - fastdds 2.10.1+ds-3 (bug #1043548) NOTE: https://github.com/eProsima/Fast-DDS/security/advisories/GHSA-mf55-5747-c4pv NOTE: https://github.com/eProsima/Fast-DDS/commit/7c1c611f2f70ec238fbde30a9ed044d99191e4fb (v2.11.1) CVE-2023-39946 (eprosima Fast DDS is a C++ implementation of the Data Distribution Ser ...) - - fastdds (bug #1043548) + - fastdds 2.10.1+ds-3 (bug #1043548) NOTE: https://github.com/eProsima/Fast-DDS/security/advisories/GHSA-j297-rg6j-m7hx NOTE: https://github.com/eProsima/Fast-DDS/commit/7c1c611f2f70ec238fbde30a9ed044d99191e4fb (v2.11.1) CVE-2023-39945 (eprosima Fast DDS is a C++ implementation of the Data Distribution Ser ...) - - fastdds (bug #1043548) + - fastdds 2.10.1+ds-3 (bug #1043548) NOTE: https://github.com/eProsima/Fast-DDS/security/advisories/GHSA-2rq6-8j7x-frr9 CVE-2023-39534 (eprosima Fast DDS is a C++ implementation of the Data Distribution Ser ...) - fastdds 2.10.1+ds-2 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/abdc979269c495e7ed2980d3078339b11304c630 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/abdc979269c495e7ed2980d3078339b11304c630 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Add chromium to dsa-needed list
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: ae37c20e by Salvatore Bonaccorso at 2023-08-15T23:11:49+02:00 Add chromium to dsa-needed list - - - - - 1 changed file: - data/dsa-needed.txt Changes: = data/dsa-needed.txt = @@ -14,6 +14,8 @@ If needed, specify the release by adding a slash after the name of the source pa -- aom/oldstable -- +chromium +-- cinder/oldstable -- frr (aron) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ae37c20ee6c6223714a4ef775b836154194f31c6 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ae37c20ee6c6223714a4ef775b836154194f31c6 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: f6068327 by Salvatore Bonaccorso at 2023-08-15T22:54:37+02:00 Process some NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -1,7 +1,7 @@ CVE-2023-4371 (A vulnerability was found in phpRecDB 1.3.1. It has been rated as prob ...) - TODO: check + NOT-FOR-US: phpRecDB CVE-2023-4369 (Insufficient data validation in Systems Extensions in Google Chrome on ...) - TODO: check + NOT-FOR-US: Systems Extensions in Google Chrome on ChromeOS CVE-2023-4368 (Insufficient policy enforcement in Extensions API in Google Chrome pri ...) - chromium [buster] - chromium (see DSA 5046) @@ -63,55 +63,55 @@ CVE-2023-4349 (Use after free in Device Trust Connectors in Google Chrome prior - chromium [buster] - chromium (see DSA 5046) CVE-2023-4345 (Broadcom RAID Controller web interface is vulnerable client-side contr ...) - TODO: check + NOT-FOR-US: Broadcom RAID Controller web interface CVE-2023-4344 (Broadcom RAID Controller web interface is vulnerable to insufficient r ...) - TODO: check + NOT-FOR-US: Broadcom RAID Controller web interface CVE-2023-4343 (Broadcom RAID Controller web interface is vulnerable due to exposure o ...) - TODO: check + NOT-FOR-US: Broadcom RAID Controller web interface CVE-2023-4342 (Broadcom RAID Controller web interface is vulnerable due to insecure d ...) - TODO: check + NOT-FOR-US: Broadcom RAID Controller web interface CVE-2023-4341 (Broadcom RAID Controller is vulnerable to Privilege escalation to root ...) - TODO: check + NOT-FOR-US: Broadcom RAID Controller web interface CVE-2023-4340 (Broadcom RAID Controller is vulnerable to Privilege escalation by taki ...) - TODO: check + NOT-FOR-US: Broadcom RAID Controller CVE-2023-4339 (Broadcom RAID Controller web interface is vulnerable to exposure of pr ...) - TODO: check + NOT-FOR-US: Broadcom RAID Controller web interface CVE-2023-4338 (Broadcom RAID Controller web interface is vulnerable due to insecure d ...) - TODO: check + NOT-FOR-US: Broadcom RAID Controller web interface CVE-2023-4337 (Broadcom RAID Controller web interface is vulnerable to improper sessi ...) - TODO: check + NOT-FOR-US: Broadcom RAID Controller web interface CVE-2023-4336 (Broadcom RAID Controller web interface is vulnerable due to insecure d ...) - TODO: check + NOT-FOR-US: Broadcom RAID Controller web interface CVE-2023-4335 (Broadcom RAID Controller Web server (nginx) is serving private server- ...) - TODO: check + NOT-FOR-US: Broadcom RAID Controller web interface CVE-2023-4334 (Broadcom RAID Controller Web server (nginx) is serving private files w ...) - TODO: check + NOT-FOR-US: Broadcom RAID Controller web interface CVE-2023-4333 (Broadcom RAID Controller web interface is vulnerable to exposure of s ...) - TODO: check + NOT-FOR-US: Broadcom RAID Controller web interface CVE-2023-4332 (Broadcom RAID Controller web interface is vulnerable due to Improper p ...) - TODO: check + NOT-FOR-US: Broadcom RAID Controller web interface CVE-2023-4331 (Broadcom RAID Controller web interface is vulnerable has an insecure d ...) - TODO: check + NOT-FOR-US: Broadcom RAID Controller web interface CVE-2023-4330 (Broadcom RAID Controller web interface is vulnerable Denial of Service ...) - TODO: check + NOT-FOR-US: Broadcom RAID Controller web interface CVE-2023-4329 (Broadcom RAID Controller web interface is vulnerable due to insecure d ...) - TODO: check + NOT-FOR-US: Broadcom RAID Controller web interface CVE-2023-4328 (Broadcom RAID Controller web interface is vulnerable to exposure of s ...) - TODO: check + NOT-FOR-US: Broadcom RAID Controller web interface CVE-2023-4327 (Broadcom RAID Controller web interface is vulnerable to exposure of se ...) - TODO: check + NOT-FOR-US: Broadcom RAID Controller web interface CVE-2023-4326 (Broadcom RAID Controller web interface is vulnerable has an insecure d ...) - TODO: check + NOT-FOR-US: Broadcom RAID Controller web interface CVE-2023-4325 (Broadcom RAID Controller web interface is vulnerable due to usage of L ...) - TODO: check + NOT-FOR-US: Broadcom RAID Controller web interface CVE-2023-4324 (Broadcom RAID Controller web interface is vulnerable due to insecure d ...) - TODO: check + NOT-FOR-US: Broadcom RAID Controller web interface CVE-2023-4323 (Broadcom RAID Controller web interface is vulnerable to improper sessi ...) - TODO: check + NOT-FOR-US: Broadcom RAID Controller web interface CVE-2023-40028 (Ghost is an open source content management
[Git][security-tracker-team/security-tracker][master] Add new chromium issues
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 57ebe9d3 by Salvatore Bonaccorso at 2023-08-15T22:29:06+02:00 Add new chromium issues Link: https://chromereleases.googleblog.com/2023/08/stable-channel-update-for-desktop_15.html - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -3,45 +3,65 @@ CVE-2023-4371 (A vulnerability was found in phpRecDB 1.3.1. It has been rated as CVE-2023-4369 (Insufficient data validation in Systems Extensions in Google Chrome on ...) TODO: check CVE-2023-4368 (Insufficient policy enforcement in Extensions API in Google Chrome pri ...) - TODO: check + - chromium + [buster] - chromium (see DSA 5046) CVE-2023-4367 (Insufficient policy enforcement in Extensions API in Google Chrome pri ...) - TODO: check + - chromium + [buster] - chromium (see DSA 5046) CVE-2023-4366 (Use after free in Extensions in Google Chrome prior to 116.0.5845.96 a ...) - TODO: check + - chromium + [buster] - chromium (see DSA 5046) CVE-2023-4365 (Inappropriate implementation in Fullscreen in Google Chrome prior to 1 ...) - TODO: check + - chromium + [buster] - chromium (see DSA 5046) CVE-2023-4364 (Inappropriate implementation in Permission Prompts in Google Chrome pr ...) - TODO: check + - chromium + [buster] - chromium (see DSA 5046) CVE-2023-4363 (Inappropriate implementation in WebShare in Google Chrome on Android p ...) - TODO: check + - chromium + [buster] - chromium (see DSA 5046) CVE-2023-4362 (Heap buffer overflow in Mojom IDL in Google Chrome prior to 116.0.5845 ...) - TODO: check + - chromium + [buster] - chromium (see DSA 5046) CVE-2023-4361 (Inappropriate implementation in Autofill in Google Chrome on Android p ...) - TODO: check + - chromium + [buster] - chromium (see DSA 5046) CVE-2023-4360 (Inappropriate implementation in Color in Google Chrome prior to 116.0. ...) - TODO: check + - chromium + [buster] - chromium (see DSA 5046) CVE-2023-4359 (Inappropriate implementation in App Launcher in Google Chrome on iOS p ...) - TODO: check + - chromium + [buster] - chromium (see DSA 5046) CVE-2023-4358 (Use after free in DNS in Google Chrome prior to 116.0.5845.96 allowed ...) - TODO: check + - chromium + [buster] - chromium (see DSA 5046) CVE-2023-4357 (Insufficient validation of untrusted input in XML in Google Chrome pri ...) - TODO: check + - chromium + [buster] - chromium (see DSA 5046) CVE-2023-4356 (Use after free in Audio in Google Chrome prior to 116.0.5845.96 allowe ...) - TODO: check + - chromium + [buster] - chromium (see DSA 5046) CVE-2023-4355 (Out of bounds memory access in V8 in Google Chrome prior to 116.0.5845 ...) - TODO: check + - chromium + [buster] - chromium (see DSA 5046) CVE-2023-4354 (Heap buffer overflow in Skia in Google Chrome prior to 116.0.5845.96 a ...) - TODO: check + - chromium + [buster] - chromium (see DSA 5046) CVE-2023-4353 (Heap buffer overflow in ANGLE in Google Chrome prior to 116.0.5845.96 ...) - TODO: check + - chromium + [buster] - chromium (see DSA 5046) CVE-2023-4352 (Type confusion in V8 in Google Chrome prior to 116.0.5845.96 allowed a ...) - TODO: check + - chromium + [buster] - chromium (see DSA 5046) CVE-2023-4351 (Use after free in Network in Google Chrome prior to 116.0.5845.96 allo ...) - TODO: check + - chromium + [buster] - chromium (see DSA 5046) CVE-2023-4350 (Inappropriate implementation in Fullscreen in Google Chrome on Android ...) - TODO: check + - chromium + [buster] - chromium (see DSA 5046) CVE-2023-4349 (Use after free in Device Trust Connectors in Google Chrome prior to 11 ...) - TODO: check + - chromium + [buster] - chromium (see DSA 5046) CVE-2023-4345 (Broadcom RAID Controller web interface is vulnerable client-side contr ...) TODO: check CVE-2023-4344 (Broadcom RAID Controller web interface is vulnerable to insufficient r ...) @@ -12216,7 +12236,8 @@ CVE-2023-2313 (Inappropriate implementation in Sandbox in Google Chrome on Windo - chromium 112.0.5615.49-1 [buster] - chromium (see DSA 5046) CVE-2023-2312 (Use after free in Offline in Google Chrome on Android prior to 116.0.5 ...) - TODO: check + - chromium + [buster] - chromium (see DSA 5046) CVE-2023-2311 (Insufficient policy enforcement in File System API in Google Chrome pr ...) {DSA-5386-1} - chromium 112.0.5615.49-1 View it on GitLab:
[Git][security-tracker-team/security-tracker][master] Process one NFU
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 3bb22341 by Salvatore Bonaccorso at 2023-08-15T22:19:51+02:00 Process one NFU - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -157,7 +157,7 @@ CVE-2023-38401 (A vulnerability in the HPE Aruba Networking Virtual Intranet Acc CVE-2023-35082 (An authentication bypass vulnerability in Ivanti EPMM 11.10 and older, ...) TODO: check CVE-2023-2916 (The InfiniteWP Client plugin for WordPress is vulnerable to Sensitive ...) - TODO: check + NOT-FOR-US: InfiniteWP Client plugin for WordPress CVE-2023-4347 (Cross-site Scripting (XSS) - Reflected in GitHub repository librenms/l ...) NOT-FOR-US: LibreNMS CVE-2023-4308 (The User Submitted Posts plugin for WordPress is vulnerable to Stored ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3bb22341a4d95abc932e6e8fab90d14e1ca01fbb -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3bb22341a4d95abc932e6e8fab90d14e1ca01fbb You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 9290ebc5 by security tracker role at 2023-08-15T20:12:33+00:00 automatic update - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -1,3 +1,163 @@ +CVE-2023-4371 (A vulnerability was found in phpRecDB 1.3.1. It has been rated as prob ...) + TODO: check +CVE-2023-4369 (Insufficient data validation in Systems Extensions in Google Chrome on ...) + TODO: check +CVE-2023-4368 (Insufficient policy enforcement in Extensions API in Google Chrome pri ...) + TODO: check +CVE-2023-4367 (Insufficient policy enforcement in Extensions API in Google Chrome pri ...) + TODO: check +CVE-2023-4366 (Use after free in Extensions in Google Chrome prior to 116.0.5845.96 a ...) + TODO: check +CVE-2023-4365 (Inappropriate implementation in Fullscreen in Google Chrome prior to 1 ...) + TODO: check +CVE-2023-4364 (Inappropriate implementation in Permission Prompts in Google Chrome pr ...) + TODO: check +CVE-2023-4363 (Inappropriate implementation in WebShare in Google Chrome on Android p ...) + TODO: check +CVE-2023-4362 (Heap buffer overflow in Mojom IDL in Google Chrome prior to 116.0.5845 ...) + TODO: check +CVE-2023-4361 (Inappropriate implementation in Autofill in Google Chrome on Android p ...) + TODO: check +CVE-2023-4360 (Inappropriate implementation in Color in Google Chrome prior to 116.0. ...) + TODO: check +CVE-2023-4359 (Inappropriate implementation in App Launcher in Google Chrome on iOS p ...) + TODO: check +CVE-2023-4358 (Use after free in DNS in Google Chrome prior to 116.0.5845.96 allowed ...) + TODO: check +CVE-2023-4357 (Insufficient validation of untrusted input in XML in Google Chrome pri ...) + TODO: check +CVE-2023-4356 (Use after free in Audio in Google Chrome prior to 116.0.5845.96 allowe ...) + TODO: check +CVE-2023-4355 (Out of bounds memory access in V8 in Google Chrome prior to 116.0.5845 ...) + TODO: check +CVE-2023-4354 (Heap buffer overflow in Skia in Google Chrome prior to 116.0.5845.96 a ...) + TODO: check +CVE-2023-4353 (Heap buffer overflow in ANGLE in Google Chrome prior to 116.0.5845.96 ...) + TODO: check +CVE-2023-4352 (Type confusion in V8 in Google Chrome prior to 116.0.5845.96 allowed a ...) + TODO: check +CVE-2023-4351 (Use after free in Network in Google Chrome prior to 116.0.5845.96 allo ...) + TODO: check +CVE-2023-4350 (Inappropriate implementation in Fullscreen in Google Chrome on Android ...) + TODO: check +CVE-2023-4349 (Use after free in Device Trust Connectors in Google Chrome prior to 11 ...) + TODO: check +CVE-2023-4345 (Broadcom RAID Controller web interface is vulnerable client-side contr ...) + TODO: check +CVE-2023-4344 (Broadcom RAID Controller web interface is vulnerable to insufficient r ...) + TODO: check +CVE-2023-4343 (Broadcom RAID Controller web interface is vulnerable due to exposure o ...) + TODO: check +CVE-2023-4342 (Broadcom RAID Controller web interface is vulnerable due to insecure d ...) + TODO: check +CVE-2023-4341 (Broadcom RAID Controller is vulnerable to Privilege escalation to root ...) + TODO: check +CVE-2023-4340 (Broadcom RAID Controller is vulnerable to Privilege escalation by taki ...) + TODO: check +CVE-2023-4339 (Broadcom RAID Controller web interface is vulnerable to exposure of pr ...) + TODO: check +CVE-2023-4338 (Broadcom RAID Controller web interface is vulnerable due to insecure d ...) + TODO: check +CVE-2023-4337 (Broadcom RAID Controller web interface is vulnerable to improper sessi ...) + TODO: check +CVE-2023-4336 (Broadcom RAID Controller web interface is vulnerable due to insecure d ...) + TODO: check +CVE-2023-4335 (Broadcom RAID Controller Web server (nginx) is serving private server- ...) + TODO: check +CVE-2023-4334 (Broadcom RAID Controller Web server (nginx) is serving private files w ...) + TODO: check +CVE-2023-4333 (Broadcom RAID Controller web interface is vulnerable to exposure of s ...) + TODO: check +CVE-2023-4332 (Broadcom RAID Controller web interface is vulnerable due to Improper p ...) + TODO: check +CVE-2023-4331 (Broadcom RAID Controller web interface is vulnerable has an insecure d ...) + TODO: check +CVE-2023-4330 (Broadcom RAID Controller web interface is vulnerable Denial of Service ...) + TODO: check +CVE-2023-4329 (Broadcom RAID Controller web interface is vulnerable due to insecure d ...) + TODO: check +CVE-2023-4328 (Broadcom RAID Controller web interface is vulnerable to exposure of s ...) + TODO: check +CVE-2023-4327 (Broadcom RAID Controller web interface is vulnerable to exposure of se ...) + TODO: check +CVE-2023-4326
[Git][security-tracker-team/security-tracker][master] Reserve DLA-3530-1 for openssl
Anton Gladky pushed to branch master at Debian Security Tracker / security-tracker Commits: 07413911 by Anton Gladky at 2023-08-15T21:55:34+02:00 Reserve DLA-3530-1 for openssl - - - - - 2 changed files: - data/DLA/list - data/dla-needed.txt Changes: = data/DLA/list = @@ -1,3 +1,6 @@ +[15 Aug 2023] DLA-3530-1 openssl - security update + {CVE-2023-3446 CVE-2023-3817} + [buster] - openssl 1.1.1n-0+deb10u6 [15 Aug 2023] DLA-3529-1 datatables.js - security update {CVE-2021-23445} [buster] - datatables.js 1.10.19+dfsg-1+deb10u1 = data/dla-needed.txt = @@ -139,10 +139,6 @@ openjdk-11 (Emilio) openssh NOTE: 20230814: Added by Front-Desk (ta) -- -openssl (gladk) - NOTE: 20230731: Added by Front-Desk (apo) - NOTE: 20230814: ready to be uploaded --- orthanc (gladk) NOTE: 20230812: Added by Front-Desk (Beuc) NOTE: 20230812: Experimental issue-based workflow: please self-assign and follow https://salsa.debian.org/lts-team/lts-updates-tasks/-/issues/41 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/074139111dfba9e192df3014f1f26261ae9990c2 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/074139111dfba9e192df3014f1f26261ae9990c2 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2023-39950/efibootguard
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 6816e306 by Salvatore Bonaccorso at 2023-08-15T21:15:51+02:00 Add Debian bug reference for CVE-2023-39950/efibootguard - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -90,7 +90,7 @@ CVE-2023-2606 (The WP Brutal AI WordPress plugin before 2.06 does not sanitise a CVE-2022-4953 (The Elementor Website Builder WordPress plugin before 3.5.5 does not f ...) NOT-FOR-US: WordPress plugin CVE-2023-39950 (efibootguard is a simple UEFI boot loader with support for safely swit ...) - - efibootguard + - efibootguard (bug #1049436) [bookworm] - efibootguard (Minor issue, can be fixed via point release) NOTE: https://github.com/siemens/efibootguard/commit/965d65c5751898c4bb094ef191b7387819423414 (v0.15) NOTE: https://github.com/siemens/efibootguard/commit/53dee61dc8b3a83c882e4bc9a0cfe7d6d73610c4 (v0.15) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6816e306627c2012f078e0409b6475d3343674dc -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6816e306627c2012f078e0409b6475d3343674dc You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Add CVE-2022-41401/openrefine
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: fcce6a1a by Salvatore Bonaccorso at 2023-08-15T20:45:19+02:00 Add CVE-2022-41401/openrefine - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -63835,7 +63835,10 @@ CVE-2022-41403 (OpenCart 3.x Newsletter Custom Popup was discovered to contain a CVE-2022-41402 RESERVED CVE-2022-41401 (OpenRefine <= v3.5.2 contains a Server-Side Request Forgery (SSRF) vul ...) - TODO: check + - openrefine 3.6.1-1 + NOTE: https://github.com/ixSly/CVE-2022-41401 + NOTE: https://github.com/OpenRefine/OpenRefine/issues/4918 + NOTE: https://github.com/OpenRefine/OpenRefine/commit/8cb2fec45dd90fda8ed9608c691f6bb8ed721cd2 (3.6-beta1) CVE-2022-41400 (Sage 300 through 2022 uses a hard-coded 40-byte blowfish key to encryp ...) NOT-FOR-US: Sage CVE-2022-41399 (The optional Web Screens feature for Sage 300 through version 2022 use ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fcce6a1a3ba90fb1e83e1722f11b27cbfaee32cc -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fcce6a1a3ba90fb1e83e1722f11b27cbfaee32cc You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Process several NFUs
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 634d774f by Salvatore Bonaccorso at 2023-08-15T20:20:53+02:00 Process several NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -3,7 +3,7 @@ CVE-2023-4347 (Cross-site Scripting (XSS) - Reflected in GitHub repository libre CVE-2023-4308 (The User Submitted Posts plugin for WordPress is vulnerable to Stored ...) NOT-FOR-US: WordPress plugin CVE-2023-40518 (LiteSpeed OpenLiteSpeed before 1.7.18 does not strictly validate HTTP ...) - TODO: check + NOT-FOR-US: LiteSpeed OpenLiteSpeed CVE-2023-40453 (Docker Machine through 0.16.2 allows an attacker, who has control of a ...) TODO: check CVE-2023-40013 (SVG Loader is a javascript library that fetches SVGs using XMLHttpRequ ...) @@ -15,9 +15,9 @@ CVE-2023-39828 (Tenda A18 V15.13.07.09 was discovered to contain a stack overflo CVE-2023-39827 (Tenda A18 V15.13.07.09 was discovered to contain a stack overflow via ...) NOT-FOR-US: Tenda CVE-2023-38687 (Svelecte is a flexible autocomplete/select component written in Svelte ...) - TODO: check + NOT-FOR-US: Svelecte CVE-2023-35689 (In checkDebuggingDisallowed of DeviceVersionFragment.java, there is a ...) - TODO: check + NOT-FOR-US: Android CVE-2023-32358 (A type confusion issue was addressed with improved checks. This issue ...) TODO: check CVE-2023-4322 (Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prio ...) @@ -46,11 +46,11 @@ CVE-2023-40312 (Multiple reflected XSS were found on different JSP files with un CVE-2023-40311 (Multiple stored XSS were found on different JSP files with unsanitized ...) NOT-FOR-US: OpenMNS CVE-2023-40024 (ScanCode.io is a server to script and automate software composition an ...) - TODO: check + NOT-FOR-US: ScanCode.io CVE-2023-40023 (yaklang is a programming language designed for cybersecurity. The Yak ...) - TODO: check + NOT-FOR-US: yaklang CVE-2023-40020 (PrivateUploader is an open source image hosting server written in Vue ...) - TODO: check + NOT-FOR-US: PrivateUploader CVE-2023-3721 (The WP-EMail WordPress plugin before 2.69.1 does not sanitise and esca ...) NOT-FOR-US: WordPress plugin CVE-2023-3645 (The Contact Form Builder by Bit Form WordPress plugin before 2.2.0 doe ...) @@ -74,13 +74,13 @@ CVE-2023-38741 (IBM TXSeries for Multiplatforms 8.1, 8.2, and 9.1 is vulnerable CVE-2023-38721 (The IBM i 7.2, 7.3, 7.4, and 7.5 product Facsimile Support for i conta ...) NOT-FOR-US: IBM CVE-2023-37847 (novel-plus v3.6.2 was discovered to contain a SQL injection vulnerabil ...) - TODO: check + NOT-FOR-US: novel-plus CVE-2023-37070 (Code Projects Hospital Information System 1.0 is vulnerable to Cross S ...) NOT-FOR-US: Code Projects Hospital Information System CVE-2023-33013 (A post-authentication command injection vulnerability in the NTP featu ...) NOT-FOR-US: Zyxel CVE-2023-32748 (The Linux DVS server component of Mitel MiVoice Connect through 19.3 S ...) - TODO: check + NOT-FOR-US: Mitel CVE-2023-2803 (The Ultimate Addons for Contact Form 7 WordPress plugin before 3.1.29 ...) NOT-FOR-US: WordPress plugin CVE-2023-2802 (The Ultimate Addons for Contact Form 7 WordPress plugin before 3.1.29 ...) @@ -792,7 +792,7 @@ CVE-2023-40041 (TOTOLINK T10_v2 5.9c.5061_B20200511 has a stack-based buffer ove CVE-2023-3898 (Improper Neutralization of Special Elements used in an SQL Command ('S ...) NOT-FOR-US: mAyaNet E-Commerce Software CVE-2023-3894 (Those using jackson-dataformats-text to parse TOML data may be vulnera ...) - TODO: check + NOT-FOR-US: jackson-dataformats-text CVE-2023-3717 (Improper Neutralization of Special Elements used in an SQL Command ('S ...) NOT-FOR-US: Farmakom Remote Administration Console CVE-2023-3716 (Improper Neutralization of Special Elements used in an SQL Command ('S ...) @@ -1147,7 +1147,7 @@ CVE-2023-39526 (PrestaShop is an open source e-commerce web application. Version CVE-2023-39525 (PrestaShop is an open source e-commerce web application. Prior to vers ...) NOT-FOR-US: PrestaShop CVE-2023-39523 (ScanCode.io is a server to script and automate software composition an ...) - TODO: check + NOT-FOR-US: ScanCode.io CVE-2023-39440 (In SAP BusinessObjects Business Intelligence - version 420, If a user ...) NOT-FOR-US: SAP CVE-2023-39439 (SAP Commerce Cloud may accept an empty passphrase for user ID and pass ...) @@ -12629,7 +12629,7 @@ CVE-2023-2247 (In affected versions of Octopus Deploy it is possible to unmask v CVE-2023-31042 RESERVED CVE-2023-31041 (An issue was discovered in SysPasswordDxe in Insyde InsydeH2O with ker ...) -
[Git][security-tracker-team/security-tracker][master] Demote CVE-2009-1143 to ignored
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 566d7a51 by Salvatore Bonaccorso at 2023-08-15T19:57:38+02:00 Demote CVE-2009-1143 to ignored - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -594676,7 +594676,7 @@ CVE-2009-1144 (Untrusted search path vulnerability in the Gentoo package of Xpdf - xpdf (Gentoo specific vulnerability in building xpdf) CVE-2009-1143 (An issue was discovered in open-vm-tools 2009.03.18-154848. Local user ...) - open-vm-tools 2:12.0.0-1 - [bullseye] - open-vm-tools (Minor issue; mount.vmhgfs not suid root in Debian) + [bullseye] - open-vm-tools (Minor issue; mount.vmhgfs not suid root in Debian) [buster] - open-vm-tools (Minor issue; mount.vmhgfs not suid root in Debian) NOTE: https://bugzilla.suse.com/show_bug.cgi?id=372070 NOTE: Removing hgfsmounter/mount.vmhgfs: https://github.com/vmware/open-vm-tools/commit/61331a189a0eeb76f014db28288b06c0323bc0b9 (stable-12.0.0) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/566d7a51b3b91c353a7f1a9cc3de14a6b4fd1de5 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/566d7a51b3b91c353a7f1a9cc3de14a6b4fd1de5 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] bullseye/bookworm triage
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: ef344f17 by Moritz Muehlenhoff at 2023-08-15T18:04:26+02:00 bullseye/bookworm triage - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -198729,11 +198729,12 @@ CVE-2020-28842 CVE-2020-28841 (MyDrivers64.sys in DriverGenius 9.61.3708.3054 allows attackers to cau ...) NOT-FOR-US: DriverGenius CVE-2020-28840 (Buffer Overflow vulnerability in jpgfile.c in Matthias-Wandel jhead ve ...) - - jhead 1:3.06.0.1-2 + - jhead 1:3.06.0.1-2 (unimportant) NOTE: https://bugs.launchpad.net/ubuntu/+source/jhead/+bug/1900820 NOTE: https://github.com/Matthias-Wandel/jhead/commit/4827ed31c226dc5ed93603bd649e0e387a1778da (3.06.0.1) NOTE: https://github.com/Matthias-Wandel/jhead/issues/8 NOTE: https://github.com/Fstark-prog/jhead/security/advisories/GHSA-xh27-xwgj-gqw2 + NOTE: Crash in CLI tool, no security impact CVE-2020-28839 RESERVED CVE-2020-28838 (Cross Site Request Forgery (CSRF) in CART option in OpenCart Ltd. Open ...) @@ -209868,6 +209869,7 @@ CVE-2020-25721 (Kerberos acceptors need easy access to stable AD identifiers (eg CVE-2020-25720 RESERVED - samba 2:4.17.8+dfsg-1 + [bullseye] - samba (Domain controller functionality is EOLed, see DSA DSA-5477-1) NOTE: https://bugzilla.samba.org/show_bug.cgi?id=14810 NOTE: https://gitlab.com/samba-team/samba/-/merge_requests/2514 NOTE: https://gitlab.com/samba-team/samba/-/commit/cc64ea24daa649dc8de4a212c7abfbe111095655 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ef344f17682c9467b21654fa7a484cb9d8075521 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ef344f17682c9467b21654fa7a484cb9d8075521 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] LTS: claim otrs2 in dla-needed.txt
Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: ef8e08e3 by Guilhem Moulin at 2023-08-15T16:14:26+02:00 LTS: claim otrs2 in dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes: = data/dla-needed.txt = @@ -148,7 +148,7 @@ orthanc (gladk) NOTE: 20230812: Experimental issue-based workflow: please self-assign and follow https://salsa.debian.org/lts-team/lts-updates-tasks/-/issues/41 NOTE: 20230812: Check DSA-5473-1 (Beuc/front-desk) -- -otrs2 +otrs2 (guilhem) NOTE: 20230811: Added by Front-Desk (Beuc) NOTE: 20230811: Experimental issue-based workflow: please self-assign and follow https://salsa.debian.org/lts-team/lts-updates-tasks/-/issues/32 NOTE: 20230811: Lots of CVEs have been marked no-dsa or ignored (Non-free not supported), View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ef8e08e301180a9be854de8b614de580c9eb3e28 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ef8e08e301180a9be854de8b614de580c9eb3e28 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Reserve DLA-3529-1 for datatables.js
Utkarsh Gupta pushed to branch master at Debian Security Tracker / security-tracker Commits: 4e8120e5 by Utkarsh Gupta at 2023-08-15T19:19:39+05:30 Reserve DLA-3529-1 for datatables.js - - - - - 3 changed files: - data/CVE/list - data/DLA/list - data/dla-needed.txt Changes: = data/CVE/list = @@ -183539,7 +183539,6 @@ CVE-2021-23446 (The package handsontable before 10.0.0; the package handsontable CVE-2021-23445 (This affects the package datatables.net before 1.11.3. If an array is ...) - datatables.js 1.10.21+dfsg-3 (bug #995229) [bullseye] - datatables.js 1.10.21+dfsg-2+deb11u1 - [buster] - datatables.js (Minor issue) [stretch] - datatables.js (Minor issue) NOTE: https://github.com/DataTables/Dist-DataTables/commit/59a8d3f8a3c1138ab08704e783bc52bfe88d7c9b (v1.11.3) CVE-2021-23444 (This affects the package jointjs before 3.4.2. A type confusion vulner ...) = data/DLA/list = @@ -1,3 +1,6 @@ +[15 Aug 2023] DLA-3529-1 datatables.js - security update + {CVE-2021-23445} + [buster] - datatables.js 1.10.19+dfsg-1+deb10u1 [14 Aug 2023] DLA-3528-1 poppler - security update {CVE-2020-36023 CVE-2020-36024} [buster] - poppler 0.71.0-5+deb10u2 = data/dla-needed.txt = @@ -33,11 +33,6 @@ cinder NOTE: 20230525: Added by Front-Desk (lamby) NOTE: 20230525: NB. CVE-2023-2088 filed against python-glance-store, python-os-brick, nova and cinder. -- -datatables.js (Utkarsh) - NOTE: 20230809: Added by Front-Desk (Beuc) - NOTE: 20230809: Experimental issue-based workflow: please self-assign and follow https://salsa.debian.org/lts-team/lts-updates-tasks/-/issues/29 - NOTE: 20230809: Follow fixes from bullseye 11.2 (1 CVE) (Beuc/front-desk) --- docker.io NOTE: 20230303: Added by Front-Desk (Beuc) NOTE: 20230303: Follow fixes from bullseye 11.2 (3 CVEs) (Beuc/front-desk) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4e8120e5f13bbb0e2b41530ab14d99f96cae1b22 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4e8120e5f13bbb0e2b41530ab14d99f96cae1b22 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] 3 commits: Take over datatables.js
Utkarsh Gupta pushed to branch master at Debian Security Tracker / security-tracker Commits: 70c2c9a7 by Utkarsh Gupta at 2023-08-15T19:15:50+05:30 Take over datatables.js - - - - - 2277872a by Utkarsh Gupta at 2023-08-15T19:16:25+05:30 Take open-vm-tools - - - - - 0d1860bd by Utkarsh Gupta at 2023-08-15T19:18:07+05:30 Add notes for intel-microcode - - - - - 1 changed file: - data/dla-needed.txt Changes: = data/dla-needed.txt = @@ -33,7 +33,7 @@ cinder NOTE: 20230525: Added by Front-Desk (lamby) NOTE: 20230525: NB. CVE-2023-2088 filed against python-glance-store, python-os-brick, nova and cinder. -- -datatables.js (guilhem) +datatables.js (Utkarsh) NOTE: 20230809: Added by Front-Desk (Beuc) NOTE: 20230809: Experimental issue-based workflow: please self-assign and follow https://salsa.debian.org/lts-team/lts-updates-tasks/-/issues/29 NOTE: 20230809: Follow fixes from bullseye 11.2 (1 CVE) (Beuc/front-desk) @@ -90,6 +90,9 @@ intel-microcode (utkarsh) NOTE: 20230809: Please coordinate with the upcoming linux update (with bwh) so users don't have to reboot twice. NOTE: 20230809: Upcoming DSA. (Beuc/front-desk) NOTE: 20230809: will co-ordinate with hmh. (utkarsh) + NOTE: 20230815: Utkarsh prepared update and is available at + NOTE: 20230815: https://salsa.debian.org/lts-team/packages/intel-microcode/-/commits/releases/buster + NOTE: 20230815: waiting for hmh to review. (utkarsh) -- linux (Ben Hutchings) NOTE: 20230111: perma-added for LTS package-specific delegation (bwh) @@ -123,7 +126,7 @@ nvidia-cuda-toolkit NOTE: 20230610: Details: https://lists.debian.org/debian-lts/2023/06/msg00032.html NOTE: 20230610: my recommendation would be to put the package on the "not-supported" list. (tobi) -- -open-vm-tools +open-vm-tools (Utkarsh) NOTE: 20230731: Added by Front-Desk (apo) -- opendmarc (Chris Lamb) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/aefa3287d465d20a69eac71594abd0321448493f...0d1860bd9e02db1174005544ede20ad104257257 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/aefa3287d465d20a69eac71594abd0321448493f...0d1860bd9e02db1174005544ede20ad104257257 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] bookworm/bullseye triage (and also updates some older libstd entries)
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: aefa3287 by Moritz Muehlenhoff at 2023-08-15T12:49:12+02:00 bookworm/bullseye triage (and also updates some older libstd entries) - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -29,12 +29,15 @@ CVE-2023-4321 (Cross-site Scripting (XSS) - Stored in GitHub repository cockpit- CVE-2023-40360 (QEMU through 8.0.4 accesses a NULL pointer in nvme_directive_receive i ...) - qemu [bookworm] - qemu (Vulnerable code intoduced later) + [bullseye] - qemu (Vulnerable code intoduced later) [buster] - qemu (Vulnerable code intoduced later) NOTE: https://gitlab.com/qemu-project/qemu/-/issues/1815 NOTE: Introduced by: https://gitlab.com/qemu-project/qemu/-/commit/73064edfb864743cde2c08f319609344af02aeb3 (v8.0.0-rc0) NOTE: Fixed by: https://gitlab.com/qemu-project/qemu/-/commit/6c8f8456cb0b239812dee5211881426496da7b98 (v8.1.0-rc3) CVE-2023-40359 (xterm before 380 supports ReGIS reporting for character-set names even ...) - xterm 382-2 + [bookworm] - xterm (Minor issue) + [bullseye] - xterm (Minor issue) NOTE: https://invisible-island.net/xterm/xterm.log.html#xterm_380 CVE-2023-40354 (An issue was discovered in MariaDB MaxScale before 23.02.3. A user ent ...) TODO: check @@ -205,10 +208,13 @@ CVE-2023-3864 (Blind SQL injection in a service running in Snow Software license NOT-FOR-US: Snow Software CVE-2023-39949 (eprosima Fast DDS is a C++ implementation of the Data Distribution Ser ...) - fastdds 2.9.1+ds-1 + [bullseye] - fastdds (Minor issue) NOTE: https://github.com/eProsima/Fast-DDS/security/advisories/GHSA-3jv9-j9x3-95cg NOTE: https://github.com/eProsima/Fast-DDS/issues/3236 CVE-2023-39948 (eprosima Fast DDS is a C++ implementation of the Data Distribution Ser ...) - fastdds 2.10.1+ds-2 + [bookworm] - fastdds (Minor issue) + [bullseye] - fastdds (Minor issue) NOTE: https://github.com/eProsima/Fast-DDS/security/advisories/GHSA-x9pj-vrgf-f68f NOTE: https://github.com/eProsima/Fast-DDS/issues/3422 CVE-2023-39947 (eprosima Fast DDS is a C++ implementation of the Data Distribution Ser ...) @@ -342,6 +348,8 @@ CVE-2023- [ZDI-CAN-21443: Integer overflow leading to heap overwrite in Real NOTE: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/4266ba0fd2be7702044a5d90a8215abe41709874 (1.22.5) CVE-2023-40225 (HAProxy through 2.0.32, 2.1.x and 2.2.x through 2.2.30, 2.3.x and 2.4. ...) - haproxy 2.6.15-1 (bug #1043502) + [bookworm] - haproxy (Minor issue, fix along with future DSA) + [bullseye] - haproxy (Minor issue, fix along with future DSA) NOTE: https://github.com/haproxy/haproxy/issues/2237 NOTE: https://github.com/haproxy/haproxy/commit/6492f1f29d738457ea9f382aca54537f35f9d856 CVE-2023-4283 (The EmbedPress plugin for WordPress is vulnerable to Stored Cross-Site ...) @@ -1122,6 +1130,8 @@ CVE-2023-39977 REJECTED CVE-2023-39976 (log_blackbox.c in libqb before 2.0.8 allows a buffer overflow via long ...) - libqb 2.0.8-1 + [bookworm] - libqb (Minor issue) + [bullseye] - libqb (Minor issue) NOTE: https://github.com/ClusterLabs/libqb/commit/1bbaa929b77113532785c408dd1b41cd0521ffc8 (v2.0.8) NOTE: https://github.com/ClusterLabs/libqb/pull/490 CVE-2023-39530 (PrestaShop is an open source e-commerce web application. Prior to vers ...) @@ -73141,6 +73151,7 @@ CVE-2022-37968 (Azure Arc-enabled Kubernetes cluster Connect Elevation of Privil NOT-FOR-US: Microsoft CVE-2022-37967 (Windows Kerberos Elevation of Privilege Vulnerability) - samba 2:4.17.4+dfsg-1 + [bullseye] - samba (Domain controller functionality is EOLed, see DSA DSA-5477-1) NOTE: https://www.samba.org/samba/security/CVE-2022-37967.html CVE-2022-37966 (Windows Kerberos RC4-HMAC Elevation of Privilege Vulnerability) - samba 2:4.17.4+dfsg-1 @@ -108460,23 +108471,17 @@ CVE-2022-25518 (In CMDBuild from version 3.0 to 3.3.2 payload requests are saved CVE-2022-25517 (MyBatis plus v3.4.3 was discovered to contain a SQL injection vulnerab ...) NOT-FOR-US: MyBatis plus CVE-2022-25516 (stb_truetype.h v1.26 was discovered to contain a heap-buffer-overflow ...) - - libstb (unimportant) + NOTE: libstb non issue, stb_truetype.h explicitly marked as unsuitable for untrusted font files + NOTE: The stb_truetype API does not know the length of the input font file and therefore cannot bounds check it. NOTE: https://github.com/nothings/stb/issues/1287 - NOTE: stb_truetype.h explicitly marked as unsuitable for untrusted files - NOTE: Also, the stb_truetype API does not know the length of
[Git][security-tracker-team/security-tracker][master] Process two more NFUs
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: dbeb111b by Salvatore Bonaccorso at 2023-08-15T11:17:30+02:00 Process two more NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -1,7 +1,7 @@ CVE-2023-4347 (Cross-site Scripting (XSS) - Reflected in GitHub repository librenms/l ...) - TODO: check + NOT-FOR-US: LibreNMS CVE-2023-4308 (The User Submitted Posts plugin for WordPress is vulnerable to Stored ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2023-40518 (LiteSpeed OpenLiteSpeed before 1.7.18 does not strictly validate HTTP ...) TODO: check CVE-2023-40453 (Docker Machine through 0.16.2 allows an attacker, who has control of a ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dbeb111b1f90a676c60a3b4433b6788cc771a418 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dbeb111b1f90a676c60a3b4433b6788cc771a418 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: cd5ab85f by Salvatore Bonaccorso at 2023-08-15T10:30:26+02:00 Process some NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -9,11 +9,11 @@ CVE-2023-40453 (Docker Machine through 0.16.2 allows an attacker, who has contro CVE-2023-40013 (SVG Loader is a javascript library that fetches SVGs using XMLHttpRequ ...) TODO: check CVE-2023-39829 (Tenda A18 V15.13.07.09 was discovered to contain a stack overflow via ...) - TODO: check + NOT-FOR-US: Tenda CVE-2023-39828 (Tenda A18 V15.13.07.09 was discovered to contain a stack overflow via ...) - TODO: check + NOT-FOR-US: Tenda CVE-2023-39827 (Tenda A18 V15.13.07.09 was discovered to contain a stack overflow via ...) - TODO: check + NOT-FOR-US: Tenda CVE-2023-38687 (Svelecte is a flexible autocomplete/select component written in Svelte ...) TODO: check CVE-2023-35689 (In checkDebuggingDisallowed of DeviceVersionFragment.java, there is a ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cd5ab85f6babd14679de369db6eea4231d12c726 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cd5ab85f6babd14679de369db6eea4231d12c726 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 18442ada by security tracker role at 2023-08-15T08:11:43+00:00 automatic update - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -1,3 +1,25 @@ +CVE-2023-4347 (Cross-site Scripting (XSS) - Reflected in GitHub repository librenms/l ...) + TODO: check +CVE-2023-4308 (The User Submitted Posts plugin for WordPress is vulnerable to Stored ...) + TODO: check +CVE-2023-40518 (LiteSpeed OpenLiteSpeed before 1.7.18 does not strictly validate HTTP ...) + TODO: check +CVE-2023-40453 (Docker Machine through 0.16.2 allows an attacker, who has control of a ...) + TODO: check +CVE-2023-40013 (SVG Loader is a javascript library that fetches SVGs using XMLHttpRequ ...) + TODO: check +CVE-2023-39829 (Tenda A18 V15.13.07.09 was discovered to contain a stack overflow via ...) + TODO: check +CVE-2023-39828 (Tenda A18 V15.13.07.09 was discovered to contain a stack overflow via ...) + TODO: check +CVE-2023-39827 (Tenda A18 V15.13.07.09 was discovered to contain a stack overflow via ...) + TODO: check +CVE-2023-38687 (Svelecte is a flexible autocomplete/select component written in Svelte ...) + TODO: check +CVE-2023-35689 (In checkDebuggingDisallowed of DeviceVersionFragment.java, there is a ...) + TODO: check +CVE-2023-32358 (A type confusion issue was addressed with improved checks. This issue ...) + TODO: check CVE-2023-4322 (Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prio ...) - radare2 NOTE: https://github.com/radareorg/radare2/commit/ba919adb74ac368bf76b150a00347ded78b572dd @@ -64,7 +86,7 @@ CVE-2023-2606 (The WP Brutal AI WordPress plugin before 2.06 does not sanitise a NOT-FOR-US: WordPress plugin CVE-2022-4953 (The Elementor Website Builder WordPress plugin before 3.5.5 does not f ...) NOT-FOR-US: WordPress plugin -CVE-2023-39950 +CVE-2023-39950 (efibootguard is a simple UEFI boot loader with support for safely swit ...) - efibootguard [bookworm] - efibootguard (Minor issue, can be fixed via point release) NOTE: https://github.com/siemens/efibootguard/commit/965d65c5751898c4bb094ef191b7387819423414 (v0.15) @@ -6313,7 +6335,7 @@ CVE-2023-32623 (Directory traversal vulnerability in Snow Monkey Forms v5.1.1 an NOT-FOR-US: Snow Monkey Forms CVE-2022-48505 (This issue was addressed with improved data protection. This issue is ...) NOT-FOR-US: Apple -CVE-2022-48503 (Processing web content may lead to arbitrary code execution) +CVE-2022-48503 (The issue was addressed with improved bounds checks. This issue is fix ...) {DSA-5241-1 DSA-5240-1} - webkit2gtk 2.38.0-1 - wpewebkit 2.38.0-1 @@ -21579,10 +21601,10 @@ CVE-2023-28201 (This issue was addressed with improved state management. This is NOT-FOR-US: Apple CVE-2023-28200 (A validation issue was addressed with improved input sanitization. Thi ...) NOT-FOR-US: Apple -CVE-2023-28199 - RESERVED -CVE-2023-28198 - RESERVED +CVE-2023-28199 (An out-of-bounds read issue existed that led to the disclosure of kern ...) + TODO: check +CVE-2023-28198 (A use-after-free issue was addressed with improved memory management. ...) + TODO: check CVE-2023-28197 RESERVED CVE-2023-28196 @@ -21619,8 +21641,8 @@ CVE-2023-28181 (The issue was addressed with improved memory handling. This issu NOT-FOR-US: Apple CVE-2023-28180 (A denial-of-service issue was addressed with improved memory handling. ...) NOT-FOR-US: Apple -CVE-2023-28179 - RESERVED +CVE-2023-28179 (The issue was addressed with improved memory handling. This issue is f ...) + TODO: check CVE-2023-28178 (A logic issue was addressed with improved validation. This issue is fi ...) NOT-FOR-US: Apple CVE-2023-28177 (Memory safety bugs present in Firefox 110. Some of these bugs showed e ...) @@ -22460,10 +22482,10 @@ CVE-2023-27950 RESERVED CVE-2023-27949 (An out-of-bounds read was addressed with improved input validation. Th ...) NOT-FOR-US: Apple -CVE-2023-27948 - RESERVED -CVE-2023-27947 - RESERVED +CVE-2023-27948 (An out-of-bounds read was addressed with improved input validation. Th ...) + TODO: check +CVE-2023-27947 (An out-of-bounds read was addressed with improved input validation. Th ...) + TODO: check CVE-2023-27946 (An out-of-bounds read was addressed with improved bounds checking. Thi ...) NOT-FOR-US: Apple CVE-2023-27945 (This issue was addressed with improved entitlements. This issue is fix ...) @@ -22478,8 +22500,8 @@ CVE-2023-27941 (A validation issue was addressed with improved input sanitizatio NOT-FOR-US: Apple CVE-2023-27940 (The issue was
[Git][security-tracker-team/security-tracker][master] libstb fixed
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 7d1ae543 by Moritz Muehlenhoff at 2023-08-15T09:35:46+02:00 libstb fixed - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -101285,7 +101285,7 @@ CVE-2022-28050 CVE-2022-28049 (NGINX NJS 0.7.2 was discovered to contain a NULL pointer dereference v ...) NOT-FOR-US: njs CVE-2022-28048 (STB v2.27 was discovered to contain an integer shift of invalid size i ...) - - libstb (unimportant) + - libstb 0.0~git20230129.5736b15+ds-1 (unimportant) NOTE: https://github.com/nothings/stb/issues/1293 NOTE: https://github.com/nothings/stb/pull/1297 NOTE: Negligible security impact View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7d1ae543ec6bace53c8fd9f3061006e40d5c5261 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7d1ae543ec6bace53c8fd9f3061006e40d5c5261 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] bullseye/bookworm triage
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 1fd8bdc5 by Moritz Muehlenhoff at 2023-08-15T09:33:37+02:00 bullseye/bookworm triage - - - - - 2 changed files: - data/CVE/list - data/dsa-needed.txt Changes: = data/CVE/list = @@ -76,6 +76,8 @@ CVE-2023-40305 (GNU indent 2.2.13 has a heap-based buffer overflow in search_bra NOTE: https://savannah.gnu.org/bugs/index.php?64503 CVE-2023-40303 (GNU inetutils through 2.4 may allow privilege escalation because of un ...) - inetutils (bug #1049365) + [bookworm] - inetutils (Minor issue) + [bullseye] - inetutils (Minor issue) NOTE: https://git.savannah.gnu.org/cgit/inetutils.git/commit/?id=e4e65c03f4c11292a3e40ef72ca3f194c8bffdd6 NOTE: https://lists.gnu.org/archive/html/bug-inetutils/2023-07/msg0.html CVE-2023-40296 (async-sockets-cpp through 0.3.1 has a stack-based buffer overflow in R ...) = data/dsa-needed.txt = @@ -19,6 +19,8 @@ cinder/oldstable frr (aron) maintainer proposed to update to 8.4.4 for bookworm, which might be a good idea -- +libreswan (jmm) +-- librsvg -- linux (carnil) @@ -70,6 +72,8 @@ ruby-tzinfo/oldstable -- salt/oldstable -- +samba/oldstable +-- tiff -- wpewebkit/oldstable View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1fd8bdc5e4f8292b4ecdea51d6c75c7d501732c7 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1fd8bdc5e4f8292b4ecdea51d6c75c7d501732c7 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits