Andrej Shadura pushed to branch master at Debian Security Tracker / security-tracker
Commits: 5db38601 by Andrej Shadura at 2023-09-01T10:03:07+02:00 Synapse CVEs fixed in 1.90.0-1 - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -11158,10 +11158,10 @@ CVE-2023-33457 (In Sogou Workflow v0.10.6, memcpy a negtive size in URIParser::p CVE-2023-33381 (A command injection vulnerability was found in the ping functionality ...) NOT-FOR-US: MitraStar CVE-2023-32683 (Synapse is a Matrix protocol homeserver written in Python with the Twi ...) - - matrix-synapse <unfixed> (bug #1037207) + - matrix-synapse 1.90.0-1 (bug #1037207) NOTE: https://github.com/matrix-org/synapse/security/advisories/GHSA-98px-6486-j7qc CVE-2023-32682 (Synapse is a Matrix protocol homeserver written in Python with the Twi ...) - - matrix-synapse <unfixed> (bug #1037207) + - matrix-synapse 1.90.0-1 (bug #1037207) NOTE: https://github.com/matrix-org/synapse/security/advisories/GHSA-26c5-ppr8-f33p CVE-2023-32551 (Landscape allowed URLs which caused open redirection.) NOT-FOR-US: Landscape View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5db38601e6eb5ee60b2f7315271e0f319db8219c -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5db38601e6eb5ee60b2f7315271e0f319db8219c You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits