[Git][security-tracker-team/security-tracker][master] CVE-2022-38143,openimageio: Bullseye is not affected.
Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker Commits: 4d7dfcec by Markus Koschany at 2023-04-09T22:51:43+02:00 CVE-2022-38143,openimageio: Bullseye is not affected. - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -45885,6 +45885,7 @@ CVE-2022-41639 (A heap based buffer overflow vulnerability exists in tile decodi NOTE: https://github.com/OpenImageIO/oiio/pull/3632 CVE-2022-38143 (A heap out-of-bounds write vulnerability exists in the way OpenImageIO ...) - openimageio 2.4.7.1+dfsg-2 (bug #1027143) + [bullseye] - openimageio (The vulnerable code was introduced later) [buster] - openimageio (The vulnerable code was introduced later) NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2022-1630 NOTE: https://github.com/OpenImageIO/oiio/pull/3620 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4d7dfcecfd6cf1a1f7fb93dcaff9f34c9730afba -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4d7dfcecfd6cf1a1f7fb93dcaff9f34c9730afba You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 6c419249 by security tracker role at 2023-04-09T20:10:26+00:00 automatic update - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -1,3 +1,9 @@ +CVE-2023-1964 (A vulnerability classified as critical has been found in PHPGurukul Ba ...) + TODO: check +CVE-2023-1963 (A vulnerability was found in PHPGurukul Bank Locker Management System ...) + TODO: check +CVE-2018-25084 + RESERVED CVE-2023-30451 RESERVED CVE-2023-30450 (rpk in Redpanda before 23.1.2 mishandles the redpanda.rpc_server_tls f ...) @@ -1850,8 +1856,8 @@ CVE-2023-29532 RESERVED CVE-2023-29531 RESERVED -CVE-2023-1962 - RESERVED +CVE-2023-1962 (A vulnerability classified as critical was found in SourceCodester Bes ...) + TODO: check CVE-2023-1961 (A vulnerability was found in SourceCodester Online Computer and Laptop ...) NOT-FOR-US: SourceCodester Online Computer and Laptop Store CVE-2023-1960 (A vulnerability was found in SourceCodester Online Computer and Laptop ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6c4192493411bea6539aa85f1113d29d05d4d676 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6c4192493411bea6539aa85f1113d29d05d4d676 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Add CVE-2023-24472/openimageio
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 428d3e62 by Salvatore Bonaccorso at 2023-04-09T21:30:49+02:00 Add CVE-2023-24472/openimageio - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -16764,7 +16764,11 @@ CVE-2023-24473 (An information disclosure vulnerability exists in the TGAInput:: NOTE: https://github.com/OpenImageIO/oiio/commit/209bb4c327b2a8be08f41c1a213dfe9001f0b5d0 (v2.4.8.1) NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2023-1707 CVE-2023-24472 (A denial of service vulnerability exists in the FitsOutput::close() fu ...) - TODO: check + [experimental] - openimageio 2.4.9.0+dfsg-1 + - openimageio + NOTE: https://github.com/OpenImageIO/oiio/commit/f8db9f38d18a66889f444031051e0f0acaa611b6 (master) + NOTE: https://github.com/OpenImageIO/oiio/commit/a39692256b060b543f53646c6a807c81b79c5750 (v2.4.8.1) + NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2023-1709 CVE-2023-22845 (An out-of-bounds read vulnerability exists in the TGAInput::decode_pix ...) [experimental] - openimageio 2.4.9.0+dfsg-1 - openimageio View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/428d3e62a2d790c8dfd41e17cca4aaabfd895238 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/428d3e62a2d790c8dfd41e17cca4aaabfd895238 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Add CVE-2023-24473 and CVE-2023-22845
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: beee3957 by Salvatore Bonaccorso at 2023-04-09T21:28:43+02:00 Add CVE-2023-24473 and CVE-2023-22845 - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -16757,11 +16757,21 @@ CVE-2023-24532 (The ScalarMult and ScalarBaseMult methods of the P256 Curve may CVE-2023-24531 RESERVED CVE-2023-24473 (An information disclosure vulnerability exists in the TGAInput::read_t ...) - TODO: check + [experimental] - openimageio 2.4.9.0+dfsg-1 + - openimageio + NOTE: https://github.com/OpenImageIO/oiio/pull/3768 + NOTE: https://github.com/OpenImageIO/oiio/commit/759fcd392d130c12ae476857e1ed2a91bcf2686b (master) + NOTE: https://github.com/OpenImageIO/oiio/commit/209bb4c327b2a8be08f41c1a213dfe9001f0b5d0 (v2.4.8.1) + NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2023-1707 CVE-2023-24472 (A denial of service vulnerability exists in the FitsOutput::close() fu ...) TODO: check CVE-2023-22845 (An out-of-bounds read vulnerability exists in the TGAInput::decode_pix ...) - TODO: check + [experimental] - openimageio 2.4.9.0+dfsg-1 + - openimageio + NOTE: https://github.com/OpenImageIO/oiio/pull/3768 + NOTE: https://github.com/OpenImageIO/oiio/commit/759fcd392d130c12ae476857e1ed2a91bcf2686b (master) + NOTE: https://github.com/OpenImageIO/oiio/commit/209bb4c327b2a8be08f41c1a213dfe9001f0b5d0 (v2.4.8.1) + NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2023-1708 CVE-2023-0509 (Improper Certificate Validation in GitHub repository pyload/pyload pri ...) - pyload (bug #1001980) CVE-2023-0508 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/beee3957d853931931e37a59e8924fe0febeb041 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/beee3957d853931931e37a59e8924fe0febeb041 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Update information on CVE-2023-1194
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: a4ce929f by Salvatore Bonaccorso at 2023-04-09T21:17:36+02:00 Update information on CVE-2023-1194 - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -7554,6 +7554,8 @@ CVE-2023-1195 CVE-2023-1194 RESERVED - linux + [bullseye] - linux (Vulnerable code not present) + [buster] - linux (Vulnerable code not present) NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2154176 CVE-2023-1193 RESERVED View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a4ce929fe91a0cc05002303acb8059f814a783ce -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a4ce929fe91a0cc05002303acb8059f814a783ce You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Update notes for CVE-2022-23134
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
2931ba7d by Salvatore Bonaccorso at 2023-04-09T20:51:09+02:00
Update notes for CVE-2022-23134
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
=
@@ -100442,8 +100442,8 @@ CVE-2022-23135 (There is a directory traversal
vulnerability in some home gatewa
CVE-2022-23134 (After the initial setup process, some steps of setup.php file
are reac ...)
{DLA-2914-1}
- zabbix 1:6.0.7+dfsg-2
- [bullseye] - zabbix (See NOTE below)
- [buster] - zabbix (See NOTE below)
+ [bullseye] - zabbix (Vulnerable code not present;
session data not stored in cookies)
+ [buster] - zabbix (Vulnerable code not present)
NOTE: https://support.zabbix.com/browse/ZBX-20384
NOTE:
https://git.zabbix.com/projects/ZBX/repos/zabbix/commits/aa0fecfbcc9794bc00206630a7424575dfc944df
(5.0.19rc2)
NOTE: 4.0 and 5.0 are not affected:
https://support.zabbix.com/browse/ZBX-20384?focusedCommentId=648239=com.atlassian.jira.plugin.system.issuetabpanels%3Acomment-tabpanel#comment-648239
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2931ba7d83e543308104d42de4c5049e5fbd5288
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2931ba7d83e543308104d42de4c5049e5fbd5288
You're receiving this email because of your account on salsa.debian.org.
___
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Triage CVE-2019-17382 for buster: Same situation as for stretch/jessie, elaborate reason.
Tobias Frost pushed to branch master at Debian Security Tracker / security-tracker Commits: 1a03fca3 by Tobias Frost at 2023-04-09T19:11:24+02:00 Triage CVE-2019-17382 for buster: Same situation as for stretch/jessie, elaborate reason. The problem is sane-default, which affects only new installations, where a guest user would be enabled by default. Later releases of zabbix changes that, but new installations are kind of out of scope for LTS, I guess… - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -263447,7 +263447,7 @@ CVE-2019-17383 (The netaddr gem before 2.0.4 for Ruby has misconfigured file per - ruby-netaddr (Upstream packaging issue) CVE-2019-17382 (An issue was discovered in zabbix.php?action=dashboard.viewdashbo ...) - zabbix 1:5.0.0+dfsg-1 - [buster] - zabbix (Minor issue) + [buster] - zabbix (Minor issue, no patch, guest accounts can be disabled) [stretch] - zabbix (Minor issue, no patch, guest accounts can be disabled) [jessie] - zabbix (Minor issue, guest accounts can be disabled) NOTE: https://support.zabbix.com/browse/ZBX-16789 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1a03fca372456221336deda6cb3bb9ff901f9a7a -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1a03fca372456221336deda6cb3bb9ff901f9a7a You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] CVE-2022-24918 is not affecting buster.
Tobias Frost pushed to branch master at Debian Security Tracker / security-tracker Commits: f07b6284 by Tobias Frost at 2023-04-09T18:39:25+02:00 CVE-2022-24918 is not affecting buster. The vulnerable code -- session handling by cookies -- is not present in 4.0.x. (patch part [0]) Upstream says in issue [1]: Affected versions Frontend (v. 5.0.0-5.0.20, 5.4.0-5.4.10, 6.0) [0] https://git.zabbix.com/projects/ZBX/repos/zabbix/commits/763ff68f0e5ddd1c84770059f2a634fd4577fcb5#frontends/php/include/func.inc.php [1] https://support.zabbix.com/browse/ZBX-20680 - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -93821,7 +93821,7 @@ CVE-2022-24919 (An authenticated user can create a link with reflected Javascrip NOTE: https://git.zabbix.com/projects/ZBX/repos/zabbix/commits/ff70e709719e4e9f25f5d187637fd53fd61c8bbe (5.0.21rc1) CVE-2022-24918 (An authenticated user can create a link with reflected Javascript code ...) - zabbix 1:6.0.7+dfsg-2 - [bullseye] - zabbix (Minor issue) + [buster] - zabbix (The vulnerable code was introduced later) [stretch] - zabbix (The vulnerable code was introduced later) NOTE: https://support.zabbix.com/browse/ZBX-20680 NOTE: https://git.zabbix.com/projects/ZBX/repos/zabbix/commits/ff70e709719e4e9f25f5d187637fd53fd61c8bbe (5.0.21rc1) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f07b6284187ced8ace27bb5f4f019fafa9b8e366 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f07b6284187ced8ace27bb5f4f019fafa9b8e366 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] CVE-2022-23134 is not affecting buster and bullseye:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
df0a35de by Tobias Frost at 2023-04-09T18:20:53+02:00
CVE-2022-23134 is not affecting buster and bullseye:
Upstream comment [1] in upstream ticket ZBX-20384:
4.0 and 5.0 branches were excluded because those were not affected by the
issue (the session data was not stored in cookies and therefore was not
exposed
to users).
[1]
https://support.zabbix.com/browse/ZBX-20384?focusedCommentId=648239page=com.atlassian.jira.plugin.system.issuetabpanels%3Acomment-tabpanel#comment-648239
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
=
@@ -100442,9 +100442,11 @@ CVE-2022-23135 (There is a directory traversal
vulnerability in some home gatewa
CVE-2022-23134 (After the initial setup process, some steps of setup.php file
are reac ...)
{DLA-2914-1}
- zabbix 1:6.0.7+dfsg-2
- [bullseye] - zabbix (Minor issue)
+ [bullseye] - zabbix (See NOTE below)
+ [buster] - zabbix (See NOTE below)
NOTE: https://support.zabbix.com/browse/ZBX-20384
NOTE:
https://git.zabbix.com/projects/ZBX/repos/zabbix/commits/aa0fecfbcc9794bc00206630a7424575dfc944df
(5.0.19rc2)
+ NOTE: 4.0 and 5.0 are not affected:
https://support.zabbix.com/browse/ZBX-20384?focusedCommentId=648239=com.atlassian.jira.plugin.system.issuetabpanels%3Acomment-tabpanel#comment-648239
CVE-2022-23133 (An authenticated user can create a hosts group from the
configuration ...)
- zabbix 1:6.0.7+dfsg-2
[bullseye] - zabbix (Minor issue)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/df0a35de687cca25a25549c8be2a9745dd9607b1
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/df0a35de687cca25a25549c8be2a9745dd9607b1
You're receiving this email because of your account on salsa.debian.org.
___
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: abae5729 by security tracker role at 2023-04-09T08:10:17+00:00 automatic update - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -1,3 +1,7 @@ +CVE-2023-30451 + RESERVED +CVE-2023-30450 (rpk in Redpanda before 23.1.2 mishandles the redpanda.rpc_server_tls f ...) + TODO: check CVE-2023-30449 RESERVED CVE-2023-30448 @@ -1958,14 +1962,14 @@ CVE-2023-1938 RESERVED CVE-2023-1937 (A vulnerability, which was classified as problematic, was found in zhe ...) NOT-FOR-US: zhenfeng13 My-Blog -CVE-2014-125095 - RESERVED +CVE-2014-125095 (A vulnerability was found in BestWebSoft Contact Form Plugin 1.3.4 and ...) + TODO: check CVE-2013-10025 (A vulnerability was found in Exit Strategy Plugin 1.55 and classified ...) NOT-FOR-US: WordPress plugin CVE-2013-10024 (A vulnerability has been found in Exit Strategy Plugin 1.55 and classi ...) NOT-FOR-US: WordPress plugin -CVE-2012-10010 - RESERVED +CVE-2012-10010 (A vulnerability was found in BestWebSoft Contact Form 3.21. It has bee ...) + TODO: check CVE-2023-29493 RESERVED CVE-2023-29492 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/abae572979d88799c938c3e4b612c052c8acf292 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/abae572979d88799c938c3e4b612c052c8acf292 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 71f34042 by Salvatore Bonaccorso at 2023-04-09T09:09:40+02:00 Process some NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -1849,29 +1849,29 @@ CVE-2023-29531 CVE-2023-1962 RESERVED CVE-2023-1961 (A vulnerability was found in SourceCodester Online Computer and Laptop ...) - TODO: check + NOT-FOR-US: SourceCodester Online Computer and Laptop Store CVE-2023-1960 (A vulnerability was found in SourceCodester Online Computer and Laptop ...) - TODO: check + NOT-FOR-US: SourceCodester Online Computer and Laptop Store CVE-2023-1959 (A vulnerability has been found in SourceCodester Online Computer and L ...) - TODO: check + NOT-FOR-US: SourceCodester Online Computer and Laptop Store CVE-2023-1958 (A vulnerability, which was classified as critical, was found in Source ...) - TODO: check + NOT-FOR-US: SourceCodester Online Computer and Laptop Store CVE-2023-1957 (A vulnerability, which was classified as critical, has been found in S ...) - TODO: check + NOT-FOR-US: SourceCodester Online Computer and Laptop Store CVE-2023-1956 (A vulnerability classified as critical was found in SourceCodester Onl ...) - TODO: check + NOT-FOR-US: SourceCodester Online Computer and Laptop Store CVE-2023-1955 (A vulnerability classified as critical has been found in SourceCodeste ...) - TODO: check + NOT-FOR-US: SourceCodester Online Computer and Laptop Store CVE-2023-1954 (A vulnerability was found in SourceCodester Online Computer and Laptop ...) - TODO: check + NOT-FOR-US: SourceCodester Online Computer and Laptop Store CVE-2023-1953 (A vulnerability was found in SourceCodester Online Computer and Laptop ...) - TODO: check + NOT-FOR-US: SourceCodester Online Computer and Laptop Store CVE-2023-1952 (A vulnerability was found in SourceCodester Online Computer and Laptop ...) - TODO: check + NOT-FOR-US: SourceCodester Online Computer and Laptop Store CVE-2023-1951 (A vulnerability was found in SourceCodester Online Computer and Laptop ...) - TODO: check + NOT-FOR-US: SourceCodester Online Computer and Laptop Store CVE-2023-1950 (A vulnerability has been found in PHPGurukul BP Monitoring Management ...) - TODO: check + NOT-FOR-US: PHPGurukul BP Monitoring Management System CVE-2023-1949 (A vulnerability, which was classified as critical, was found in PHPGur ...) NOT-FOR-US: PHPGurukul BP Monitoring Management System CVE-2023-1948 (A vulnerability, which was classified as problematic, has been found i ...) @@ -1961,9 +1961,9 @@ CVE-2023-1937 (A vulnerability, which was classified as problematic, was found i CVE-2014-125095 RESERVED CVE-2013-10025 (A vulnerability was found in Exit Strategy Plugin 1.55 and classified ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2013-10024 (A vulnerability has been found in Exit Strategy Plugin 1.55 and classi ...) - TODO: check + NOT-FOR-US: WordPress plugin CVE-2012-10010 RESERVED CVE-2023-29493 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/71f3404219924cf9bfaef3a68f0651db987e004e -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/71f3404219924cf9bfaef3a68f0651db987e004e You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Update information for CVE-2023-1801
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: fbce2f6c by Salvatore Bonaccorso at 2023-04-09T09:03:10+02:00 Update information for CVE-2023-1801 - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -2983,9 +2983,10 @@ CVE-2023-1803 CVE-2023-1802 (In Docker Desktop 4.17.x the Artifactory Integration falls back to sen ...) NOT-FOR-US: Docker Desktop CVE-2023-1801 (The SMB protocol decoder in tcpdump version 4.99.3 can perform an out- ...) - - tcpdump (bug #1034086) + - tcpdump (bug #1034086; unimportant) NOTE: https://github.com/the-tcpdump-group/tcpdump/commit/7578e1c04ee280dda50c4c2813e7d55f539c6501 (master) NOTE: https://github.com/the-tcpdump-group/tcpdump/commit/03c037bbd75588beba3ee09f26d17783d21e30bc (tcpdump-4.99.4) + NOTE: SMB printer not enabled in Debian builds CVE-2023-1800 (A vulnerability, which was classified as critical, has been found in s ...) NOT-FOR-US: sjqzhang go-fastdfs CVE-2023-1799 (A vulnerability, which was classified as problematic, was found in Eyo ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fbce2f6c0ae7fedcdedd8bd9ba57fb246d9e9d41 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fbce2f6c0ae7fedcdedd8bd9ba57fb246d9e9d41 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
