[Git][security-tracker-team/security-tracker][master] new curl issues

Mon, 20 Mar 2023 07:57:58 -0700 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
e0639694 by Moritz Muehlenhoff at 2023-03-20T15:57:31+01:00
new curl issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3447,16 +3447,40 @@ CVE-2023-27539
        NOTE: 
https://discuss.rubyonrails.org/t/cve-2023-27539-possible-denial-of-service-vulnerability-in-racks-header-parsing/82466
 CVE-2023-27538
        RESERVED
+       - curl <unfixed>
+       [bullseye] - curl <no-dsa> (Minor issue)
+       NOTE: https://curl.se/docs/CVE-2023-27538.html
+       NOTE: https://github.com/curl/curl/commit/af369db4d3833272b8ed
 CVE-2023-27537
        RESERVED
+       - curl <unfixed>
+       [bullseye] - curl <ignored> (curl is not built with HSTS support)
+       NOTE: https://curl.se/docs/CVE-2023-27537.html
+       NOTE: https://github.com/curl/curl/commit/dca4cdf071be0
 CVE-2023-27536
        RESERVED
+       - curl <unfixed>
+       [bullseye] - curl <no-dsa> (Minor issue)
+       NOTE: https://curl.se/docs/CVE-2023-27536.html
+       NOTE: https://github.com/curl/curl/commit/cb49e67303dba
 CVE-2023-27535
        RESERVED
+       - curl <unfixed>
+       [bullseye] - curl <no-dsa> (Minor issue)
+       NOTE: https://curl.se/docs/CVE-2023-27535.html
+       NOTE: https://github.com/curl/curl/commit/8f4608468b890dc
 CVE-2023-27534
        RESERVED
+       - curl <unfixed>
+       [bullseye] - curl <no-dsa> (Minor issue)
+       NOTE: https://curl.se/docs/CVE-2023-27534.html
+       NOTE: https://github.com/curl/curl/commit/4e2b52b5f7a3bf50a
 CVE-2023-27533
        RESERVED
+       - curl <unfixed>
+       [bullseye] - curl <no-dsa> (Minor issue)
+       NOTE: https://curl.se/docs/CVE-2023-27533.html
+       NOTE: https://github.com/curl/curl/commit/538b1e79a6e7b
 CVE-2023-27532 (Vulnerability in Veeam Backup &amp; Replication component 
allows encry ...)
        NOT-FOR-US: Veeam
 CVE-2023-27531



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e0639694f33e26c9d7e0231d820c8df77caf88eb

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e0639694f33e26c9d7e0231d820c8df77caf88eb
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to