Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
4595f08a by Moritz Muehlenhoff at 2023-03-17T15:09:07+01:00
bugnums
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -17590,22 +17590,30 @@ CVE-2023-22488 (Flarum is a forum software for
building communities. Using the n
CVE-2023-22487 (Flarum is a forum software for building communities. Using the
mention ...)
NOT-FOR-US: Flarum
CVE-2023-22486 (cmark-gfm is GitHub's fork of cmark, a CommonMark parsing and
renderin ...)
- - cmark-gfm <unfixed>
+ - cmark-gfm <unfixed> (bug #1033110)
+ - python-cmarkgfm <unfixed> (bug #1033111)
+ - r-cran-commonmark <unfixed> (bug #1033112)
+ - ruby-commonmarker <unfixed> (bug #1033113)
NOTE:
https://github.com/github/cmark-gfm/security/advisories/GHSA-r572-jvj2-3m8p
NOTE:
https://github.com/github/cmark-gfm/commit/ece074cc3378f7a8dec0395f00123e9fa6981f7b
(0.29.0.gfm.7)
- TODO: check other codebase, python-cmarkgfm, ruby-commonmarker and
r-cran-commonmark
CVE-2023-22485 (cmark-gfm is GitHub's fork of cmark, a CommonMark parsing and
renderin ...)
- - cmark-gfm <unfixed>
+ - cmark-gfm <unfixed> (bug #1033110)
+ - python-cmarkgfm <unfixed> (bug #1033111)
+ - r-cran-commonmark <unfixed> (bug #1033112)
+ - ruby-commonmarker <unfixed> (bug #1033113)
NOTE:
https://github.com/github/cmark-gfm/security/advisories/GHSA-c944-cv5f-hpvr
- TODO: check other codebase, python-cmarkgfm, ruby-commonmarker and
r-cran-commonmark
CVE-2023-22484 (cmark-gfm is GitHub's fork of cmark, a CommonMark parsing and
renderin ...)
- - cmark-gfm <unfixed>
+ - cmark-gfm <unfixed> (bug #1033110)
+ - python-cmarkgfm <unfixed> (bug #1033111)
+ - r-cran-commonmark <unfixed> (bug #1033112)
+ - ruby-commonmarker <unfixed> (bug #1033113)
NOTE:
https://github.com/github/cmark-gfm/security/advisories/GHSA-24f7-9frr-5h2r
- TODO: check other codebase, python-cmarkgfm, ruby-commonmarker and
r-cran-commonmark
CVE-2023-22483 (cmark-gfm is GitHub's fork of cmark, a CommonMark parsing and
renderin ...)
- - cmark-gfm <unfixed>
+ - cmark-gfm <unfixed> (bug #1033110)
+ - python-cmarkgfm <unfixed> (bug #1033111)
+ - r-cran-commonmark <unfixed> (bug #1033112)
+ - ruby-commonmarker <unfixed> (bug #1033113)
NOTE:
https://github.com/github/cmark-gfm/security/advisories/GHSA-29g3-96g3-jg6c
- TODO: check other codebase, python-cmarkgfm, ruby-commonmarker and
r-cran-commonmark
CVE-2023-22482 (Argo CD is a declarative, GitOps continuous delivery tool for
Kubernet ...)
NOT-FOR-US: Argo CD
CVE-2023-22481 (FreshRSS is a self-hosted RSS feed aggregator. When using the
greader ...)
@@ -208078,7 +208086,7 @@ CVE-2020-16156 (CPAN 2.28 allows Signature
Verification Bypass. ...)
NOTE:
https://github.com/andk/cpanpm/commit/7d4d5e32bcd9b75f7bf70a395938a48ca4a06d25
(2.33-TRIAL)
NOTE:
https://github.com/andk/cpanpm/commit/89b13baf1d46e4fb10023af30ef305efec4fd603
(2.33-TRIAL)
CVE-2020-16155 (The CPAN::Checksums package 2.12 for Perl does not uniquely
define sig ...)
- - libcpan-checksums-perl <unfixed>
+ - libcpan-checksums-perl <unfixed> (bug #1033109)
[bookworm] - libcpan-checksums-perl <no-dsa> (Minor issue)
[bullseye] - libcpan-checksums-perl <no-dsa> (Minor issue)
[buster] - libcpan-checksums-perl <no-dsa> (Minor issue)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4595f08a6df8c918b41b3f829d65f8cd4606f0c6
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4595f08a6df8c918b41b3f829d65f8cd4606f0c6
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
