Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
53a5c80f by Moritz Muehlenhoff at 2023-09-07T10:07:21+02:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -27291,13 +27291,13 @@ CVE-2023-27530 (A DoS vulnerability exists in Rack
<v3.0.4.2, <v2.2.6.3, <v2.1.4
NOTE:
https://github.com/rack/rack/commit/b632718265fa5ffa547b060331341a1e216b4ffa
(v2.1.4.3)
NOTE:
https://github.com/rack/rack/commit/5f6e2fcbbdbff2dfaa21baa693e9d23d12ac1459
(v2.0.9.3)
CVE-2023-27526 (A non Admin authenticated user could incorrectly create
resources usin ...)
- TODO: check
+ NOT-FOR-US: Apache Superset
CVE-2023-27525 (An authenticated user with Gamma role authorization could have
access ...)
NOT-FOR-US: Apache Superset
CVE-2023-27524 (Session Validation attacks in Apache Superset versions up to
and inclu ...)
NOT-FOR-US: Apache Superset
CVE-2023-27523 (Improper data authorization check on Jinja templated queries
in Apache ...)
- TODO: check
+ NOT-FOR-US: Apache Superset
CVE-2023-27522 (HTTP Response Smuggling vulnerability in Apache HTTP Server
via mod_pr ...)
{DSA-5376-1 DLA-3401-1}
- apache2 2.4.56-1 (bug #1032476)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/53a5c80f58973791043a7b43997709c5c889223f
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/53a5c80f58973791043a7b43997709c5c889223f
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
