[Git][security-tracker-team/security-tracker][master] Add CVE-2023-4012 for ntpsec issue

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
a0237619 by Salvatore Bonaccorso at 2023-08-04T07:00:49+02:00
Add CVE-2023-4012 for ntpsec issue

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -664,11 +664,12 @@ CVE-2023-32226 (Sysaid -  CWE-552: Files or Directories 
Accessible to External P
        NOT-FOR-US: SysAid
 CVE-2023-32225 (Sysaid - CWE-434: Unrestricted Upload of File with Dangerous 
Type -  A ...)
        NOT-FOR-US: SysAid
-CVE-2023-XXXX [crash on NTS requests]
+CVE-2023-4012 [crash on NTS requests]
        - ntpsec 1.2.2+dfsg1-2 (bug #1038422)
        [bullseye] - ntpsec <not-affected> (Vulnerable code introduced later)
        [buster] - ntpsec <not-affected> (Vulnerable code introduced later)
        NOTE: https://gitlab.com/NTPsec/ntpsec/-/issues/794
+       NOTE: https://blog.ntpsec.org/2023/08/03/version-1.2.2a.html
 CVE-2023-38988 (An issue in the delete function in the OaNotifyController 
class of jee ...)
        NOT-FOR-US: jeesite
 CVE-2023-3598 (Out of bounds read and write in ANGLE in Google Chrome prior to 
114.0. ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a023761902a44d0e28623da641bf3b6b33e9e4dd

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a023761902a44d0e28623da641bf3b6b33e9e4dd
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits