Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 81d7b0df by Salvatore Bonaccorso at 2023-09-13T22:47:35+02:00 Add CVE-2023-38039/curl - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -1,3 +1,11 @@ +CVE-2023-38039 [HTTP headers eat all memory] + - curl <unfixed> + [bullseye] - curl <not-affected> (Vulnerable code not present) + [buster] - curl <not-affected> (Vulnerable code not present) + NOTE: https://www.openwall.com/lists/oss-security/2023/09/13/1 + NOTE: https://curl.se/docs/CVE-2023-38039.html + NOTE: Experimental tag removed in: https://github.com/curl/curl/commit/4d94fac9f0d1dd02b8308291e4c47651142dc28b (curl-7_84_0) + NOTE: Fixed by: https://github.com/curl/curl/commit/3ee79c1674fd6f99e8efca52cd7510e08b766770 (curl-8_3_0) CVE-2023-4828 (An improper check for an exceptional condition in the Insider Threat M ...) NOT-FOR-US: Insider Threat Management (ITM) Server CVE-2023-4803 (A reflected cross-site scripting vulnerability in the WriteWindowTitle ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/81d7b0dfe0c375c5e7f63444a75a2ca5b03c289c -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/81d7b0dfe0c375c5e7f63444a75a2ca5b03c289c You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
