Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
042f123d by Salvatore Bonaccorso at 2023-09-07T21:22:00+02:00
Process two CVEs for electron, itp'ed
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -20,7 +20,7 @@ CVE-2023-40392 (A privacy issue was addressed with improved
private data redacti
CVE-2023-39967 (WireMock is a tool for mocking HTTP services. When certain
request URL ...)
TODO: check
CVE-2023-39956 (Electron is a framework which lets you write cross-platform
desktop ap ...)
- TODO: check
+ - electron <itp> (bug #842420)
CVE-2023-39240 (It is identified a format string vulnerability in ASUS
RT-AX56U V2\u20 ...)
NOT-FOR-US: ASUS
CVE-2023-39239 (It is identified a format string vulnerability in ASUS
RT-AX56U V2\u20 ...)
@@ -21519,7 +21519,7 @@ CVE-2023-29200 (Contao is an open source content
management system. Prior to ver
CVE-2023-29199 (There exists a vulnerability in source code transformer
(exception san ...)
NOT-FOR-US: Node vm2
CVE-2023-29198 (Electron is a framework which lets you write cross-platform
desktop ap ...)
- TODO: check
+ - electron <itp> (bug #842420)
CVE-2023-29197 (guzzlehttp/psr7 is a PSR-7 HTTP message library implementation
in PHP. ...)
- php-guzzlehttp-psr7 2.4.5-1 (bug #1034581)
[bullseye] - php-guzzlehttp-psr7 <no-dsa> (Minor issue; can be fixed
via point release)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/042f123d376756d5baeb29020fc1819e9a0123bd
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/042f123d376756d5baeb29020fc1819e9a0123bd
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
