Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
933996a1 by Salvatore Bonaccorso at 2023-05-01T21:19:19+02:00
Add information for CVE-2023-31436 and CVE-2023-2248
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -190,7 +190,9 @@ CVE-2023-XXXX [RUSTSEC-2023-0035: enumflags2: Adverserial
use of make_bitflags!
NOTE: https://rustsec.org/advisories/RUSTSEC-2023-0035.html
CVE-2023-31436 (qfq_change_class in net/sched/sch_qfq.c in the Linux kernel
before 6.2 ...)
- linux <unfixed>
+ [buster] - linux 4.19.282-1
NOTE:
https://git.kernel.org/linus/3037933448f60f9acb705997eae62013ecb81e0d (6.3)
+ NOTE: https://kernel.dance/#3037933448f60f9acb705997eae62013ecb81e0d
CVE-2023-31290 (Trust Wallet Core before 3.1.1, as used in the Trust Wallet
browser ex ...)
NOT-FOR-US: Trust Wallet Core
CVE-2023-31289
@@ -715,6 +717,11 @@ CVE-2023-2249
RESERVED
CVE-2023-2248
RESERVED
+ - linux <unfixed>
+ [buster] - linux 4.19.282-1
+ NOTE:
https://git.kernel.org/linus/3037933448f60f9acb705997eae62013ecb81e0d (6.3)
+ NOTE: https://kernel.dance/#3037933448f60f9acb705997eae62013ecb81e0d
+ NOTE: Duplicate of CVE-2023-31436
CVE-2022-48477 (In JetBrains Hub before 2023.1.15725 SSRF protection in Auth
Module in ...)
NOT-FOR-US: JetBrains Hub
CVE-2022-48476 (In JetBrains Ktor before 2.3.0 path traversal in the
`resolveResource` ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/933996a15d61ced7a98205ffb7079bee64d93a7b
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/933996a15d61ced7a98205ffb7079bee64d93a7b
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
