Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
1dd42851 by security tracker role at 2023-09-25T20:12:14+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,8 +1,122 @@
+CVE-2023-5166 (Docker Desktop before 4.23.0 allows Access Token theft via a
crafted e ...)
+ TODO: check
+CVE-2023-5165 (Docker Desktop before 4.23.0 allows an unprivileged user to
bypass Enh ...)
+ TODO: check
+CVE-2023-5158 (A flaw was found in vringh_kiov_advance in
drivers/vhost/vringh.c in t ...)
+ TODO: check
+CVE-2023-5156 (A flaw was found in the GNU C Library. A recent fix for
CVE-2023-4806 ...)
+ TODO: check
+CVE-2023-4892 (Teedy v1.11 has a vulnerability in its text editor that allows
events ...)
+ TODO: check
+CVE-2023-4631 (The DoLogin Security WordPress plugin before 3.7 uses headers
such as ...)
+ TODO: check
+CVE-2023-4549 (The DoLogin Security WordPress plugin before 3.7 does not
properly san ...)
+ TODO: check
+CVE-2023-4521 (The Import XML and RSS Feeds WordPress plugin before 2.1.5
contains a ...)
+ TODO: check
+CVE-2023-4502 (The Translate WordPress with GTranslate WordPress plugin before
3.0.4 ...)
+ TODO: check
+CVE-2023-4490 (The WP Job Portal WordPress plugin through 2.0.3 does not
sanitise and ...)
+ TODO: check
+CVE-2023-4476 (The Locatoraid Store Locator WordPress plugin before 3.9.24
does not s ...)
+ TODO: check
+CVE-2023-4300 (The Import XML and RSS Feeds WordPress plugin before 2.1.4 does
not fi ...)
+ TODO: check
+CVE-2023-4281 (This Activity Log WordPress plugin before 2.8.8 retrieves
client IP ad ...)
+ TODO: check
+CVE-2023-4238 (The Prevent files / folders access WordPress plugin before
2.5.2 does ...)
+ TODO: check
+CVE-2023-4148 (The Ditty WordPress plugin before 3.1.25 does not sanitise and
escape ...)
+ TODO: check
+CVE-2023-43644 (Sing-box is an open source proxy system. Affected versions are
subject ...)
+ TODO: check
+CVE-2023-43642 (snappy-java is a Java port of the snappy, a fast C++
compresser/decomp ...)
+ TODO: check
+CVE-2023-43458 (Cross Site Scripting (XSS) vulnerability in Resort Reservation
System ...)
+ TODO: check
+CVE-2023-43456 (Cross Site Scripting vulnerability in Service Provider
Management Syst ...)
+ TODO: check
+CVE-2023-43382 (Directory Traversal vulnerability in itechyou dreamer CMS
v.4.1.3 allo ...)
+ TODO: check
+CVE-2023-43339 (Cross-Site Scripting (XSS) vulnerability in cmsmadesimple
v.2.2.18 all ...)
+ TODO: check
+CVE-2023-43319 (Cross Site Scripting (XSS) vulnerability in the Sign-In page
of IceWar ...)
+ TODO: check
+CVE-2023-43256 (A path traversal in Gladys Assistant v4.26.1 and below allows
authenti ...)
+ TODO: check
+CVE-2023-43141 (TOTOLINK A3700R V9.1.2u.6134_B20201202 and N600R V5.3c.5137
are vulner ...)
+ TODO: check
+CVE-2023-43131 (General Device Manager 2.5.2.2 is vulnerable to Buffer
Overflow.)
+ TODO: check
+CVE-2023-42817 (Pimcore admin-ui-classic-bundle provides a Backend UI for
Pimcore. The ...)
+ TODO: check
+CVE-2023-41871 (Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in
Poll Mak ...)
+ TODO: check
+CVE-2023-41868 (Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in
Ram Rata ...)
+ TODO: check
+CVE-2023-41867 (Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in
AcyMaili ...)
+ TODO: check
+CVE-2023-41863 (Unauth. Stored Cross-Site Scripting (XSS) vulnerability in
Pepro Dev. ...)
+ TODO: check
+CVE-2023-41419 (An issue in Gevent Gevent before version 23.9.1 allows a
remote attack ...)
+ TODO: check
+CVE-2023-41303 (Command injection vulnerability in the distributed file system
module. ...)
+ TODO: check
+CVE-2023-41302 (Redirection permission verification vulnerability in the home
screen m ...)
+ TODO: check
+CVE-2023-41301 (Vulnerability of unauthorized API access in the PMS module.
Successful ...)
+ TODO: check
+CVE-2023-41300 (Vulnerability of parameters not being strictly verified in the
PMS mod ...)
+ TODO: check
+CVE-2023-41299 (DoS vulnerability in the PMS module. Successful exploitation
of this v ...)
+ TODO: check
+CVE-2023-41298 (Vulnerability of permission control in the window module.
Successful e ...)
+ TODO: check
+CVE-2023-41297 (Vulnerability of defects introduced in the design process in
the Hivie ...)
+ TODO: check
+CVE-2023-41296 (Vulnerability of missing authorization in the kernel module.
Successfu ...)
+ TODO: check
+CVE-2023-41295 (Vulnerability of improper permission management in the
displayengine m ...)
+ TODO: check
+CVE-2023-41294 (The DP module has a service hijacking vulnerability.Successful
exploit ...)
+ TODO: check
+CVE-2023-41293 (Data security classification vulnerability in the DDMP module.
Success ...)
+ TODO: check
+CVE-2023-40163 (An out-of-bounds write vulnerability exists in the
allocate_buffer_for ...)
+ TODO: check
+CVE-2023-3664 (The FileOrganizer WordPress plugin through 1.0.2 does not
restrict fun ...)
+ TODO: check
+CVE-2023-3550 (Mediawiki v1.40.0 does not validate namespaces used in XML
files. The ...)
+ TODO: check
+CVE-2023-3547 (The All in One B2B for WooCommerce WordPress plugin through
1.0.3 does ...)
+ TODO: check
+CVE-2023-3226 (The Popup Builder WordPress plugin through 4.1.15 does not
sanitise an ...)
+ TODO: check
+CVE-2023-39640 (UpLight cookiebanner before 1.5.1 was discovered to contain a
SQL inje ...)
+ TODO: check
+CVE-2023-39453 (A use-after-free vulnerability exists in the tif_parse_sub_IFD
functio ...)
+ TODO: check
+CVE-2023-39409 (DoS vulnerability in the PMS module. Successful exploitation
of this v ...)
+ TODO: check
+CVE-2023-39408 (DoS vulnerability in the PMS module. Successful exploitation
of this v ...)
+ TODO: check
+CVE-2023-39407 (The Watchkit has a risk of unauthorized file access.Successful
exploit ...)
+ TODO: check
+CVE-2023-35002 (A heap-based buffer overflow vulnerability exists in the
pictwread fun ...)
+ TODO: check
+CVE-2023-32653 (An out-of-bounds write vulnerability exists in the
dcm_pixel_data_deco ...)
+ TODO: check
+CVE-2023-32614 (A heap-based buffer overflow vulnerability exists in the
create_png_ob ...)
+ TODO: check
+CVE-2023-32284 (An out-of-bounds write vulnerability exists in the
tiff_planar_adobe f ...)
+ TODO: check
+CVE-2022-48605 (Input verification vulnerability in the fingerprint module.
Successful ...)
+ TODO: check
CVE-2023-42755 [wild pointer access in rsvp classifer in the Linux kernel]
- linux 6.3.7-1
NOTE:
https://lore.kernel.org/all/CADW8OBtkAf+nGokhD9zCFcmiebL1SM8bJp_oo=pe02bkng9...@mail.gmail.com/
NOTE:
https://git.kernel.org/linus/265b4da82dbf5df04bee5a5d46b7474b1aaf326a (6.3-rc1)
-CVE-2023-40581
+CVE-2023-40581 (yt-dlp is a youtube-dl fork with additional features and
fixes. yt-dlp ...)
- yt-dlp <not-affected> (Windows-specific)
NOTE:
https://github.com/yt-dlp/yt-dlp/security/advisories/GHSA-42h4-v29r-42qg
CVE-2023-5154 (** UNSUPPORTED WHEN ASSIGNED ** A vulnerability has been found
in D-Li ...)
@@ -6590,7 +6704,7 @@ CVE-2023-4158 (Cross-site Scripting (XSS) - Stored in
GitHub repository omeka/om
NOT-FOR-US: omeka-s
CVE-2023-4157 (Improper Input Validation in GitHub repository omeka/omeka-s
prior to ...)
NOT-FOR-US: omeka-s
-CVE-2023-4156 [heap out of bound read in builtin.c]
+CVE-2023-4156 (A heap out-of-bounds read flaw was found in builtin.c in the
gawk pack ...)
- gawk 1:5.2.1-1
[bullseye] - gawk <no-dsa> (Minor issue)
[buster] - gawk <postponed> (Minor issue, OOB read)
@@ -22175,8 +22289,8 @@ CVE-2023-29506 (XWiki Commons are technical libraries
common to several other to
NOT-FOR-US: XWiki
CVE-2023-29505 (An issue was discovered in Zoho ManageEngine Network
Configuration Man ...)
NOT-FOR-US: Zoho
-CVE-2023-28393
- RESERVED
+CVE-2023-28393 (A stack-based buffer overflow vulnerability exists in the
tif_processi ...)
+ TODO: check
CVE-2023-1942 (A vulnerability has been found in SourceCodester Online
Computer and L ...)
NOT-FOR-US: SourceCodester Online Computer and Laptop Store
CVE-2023-1941 (A vulnerability, which was classified as critical, has been
found in S ...)
@@ -22204,6 +22318,7 @@ CVE-2023-32643 (A flaw was found in GLib. The GVariant
deserialization code is v
- glib2.0 <not-affected> (Incomplete fixes for CVE-2023-29499,
CVE-2023-32611 and CVE-2023-32665 not applied)
NOTE: https://gitlab.gnome.org/GNOME/glib/-/issues/2840
CVE-2023-32665 (A flaw was found in GLib. GVariant deserialization is
vulnerable to an ...)
+ {DLA-3583-1}
- glib2.0 2.74.4-1
[bullseye] - glib2.0 <no-dsa> (Minor issue)
NOTE: https://gitlab.gnome.org/GNOME/glib/-/issues/2121
@@ -22214,6 +22329,7 @@ CVE-2023-32665 (A flaw was found in GLib. GVariant
deserialization is vulnerable
NOTE: https://gitlab.gnome.org/GNOME/glib/-/issues/2840 (CVE-2023-32643)
NOTE: https://gitlab.gnome.org/GNOME/glib/-/issues/2841 (CVE-2023-32636)
CVE-2023-32611 (A flaw was found in GLib. GVariant deserialization is
vulnerable to a ...)
+ {DLA-3583-1}
- glib2.0 2.74.4-1
[bullseye] - glib2.0 <no-dsa> (Minor issue)
NOTE: https://gitlab.gnome.org/GNOME/glib/-/issues/2797
@@ -22224,6 +22340,7 @@ CVE-2023-32611 (A flaw was found in GLib. GVariant
deserialization is vulnerable
NOTE: https://gitlab.gnome.org/GNOME/glib/-/issues/2840 (CVE-2023-32643)
NOTE: https://gitlab.gnome.org/GNOME/glib/-/issues/2841 (CVE-2023-32636)
CVE-2023-29499 (A flaw was found in GLib. GVariant deserialization fails to
validate t ...)
+ {DLA-3583-1}
- glib2.0 2.74.4-1
[bullseye] - glib2.0 <no-dsa> (Minor issue)
NOTE: https://gitlab.gnome.org/GNOME/glib/-/issues/2794
@@ -29261,8 +29378,8 @@ CVE-2023-27522 (HTTP Response Smuggling vulnerability
in Apache HTTP Server via
NOTE: https://www.openwall.com/lists/oss-security/2023/03/07/2
NOTE:
https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2023-27522
NOTE:
https://github.com/apache/httpd/commit/0df5879df8f16b4101ea2365672178b4ae899e9e
(r1907980)
-CVE-2023-23567
- RESERVED
+CVE-2023-23567 (A heap-based buffer overflow vulnerability exists in the
CreateDIBfrom ...)
+ TODO: check
CVE-2023-1155 (The Cost Calculator plugin for WordPress is vulnerable to
Stored Cross ...)
NOT-FOR-US: Cost Calculator plugin for WordPress
CVE-2023-1154 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
@@ -36549,8 +36666,8 @@ CVE-2023-25001 (A maliciously crafted SKP file in
Autodesk Navisworks 2023 and 2
NOT-FOR-US: Autodesk
CVE-2023-0634
REJECTED
-CVE-2023-0633
- RESERVED
+CVE-2023-0633 (In Docker Desktop on Windows before 4.12.0 an argument
injection to in ...)
+ TODO: check
CVE-2023-0632 (An issue has been discovered in GitLab affecting all versions
starting ...)
- gitlab <unfixed>
CVE-2023-0631 (The Paid Memberships Pro WordPress plugin before 2.9.12 does
not preve ...)
@@ -36561,12 +36678,12 @@ CVE-2023-0629 (Docker Desktop before 4.17.0 allows an
unprivileged user to bypas
NOT-FOR-US: Docker Desktop
CVE-2023-0628 (Docker Desktop before 4.17.0 allows an attacker to execute an
arbitrar ...)
NOT-FOR-US: Docker Desktop
-CVE-2023-0627
- RESERVED
-CVE-2023-0626
- RESERVED
-CVE-2023-0625
- RESERVED
+CVE-2023-0627 (Docker Desktop 4.11.x allows --no-windows-containers flag
bypass via I ...)
+ TODO: check
+CVE-2023-0626 (Docker Desktop before 4.12.0 is vulnerable to RCE via query
parameters ...)
+ TODO: check
+CVE-2023-0625 (Docker Desktop before 4.12.0 is vulnerable to RCE via a crafted
extens ...)
+ TODO: check
CVE-2023-0624 (OrangeScrum version 2.0.11 allows an external attacker to
obtain arbit ...)
NOT-FOR-US: OrangeScrum
CVE-2023-0623 (Cscape Envision RV version 4.60 is vulnerable to an
out-of-bounds writ ...)
@@ -51294,8 +51411,7 @@ CVE-2022-4320 (The WordPress Events Calendar WordPress
plugin before 1.4.5 does
NOT-FOR-US: WordPress plugin
CVE-2022-4319
RESERVED
-CVE-2022-4318
- RESERVED
+CVE-2022-4318 (A vulnerability was found in cri-o. This issue allows the
addition of ...)
- cri-o <itp> (bug #979702)
CVE-2022-4317 (An issue has been discovered in GitLab DAST analyzer affecting
all ver ...)
NOT-FOR-US: Gitlab DAST analyzer
@@ -52348,14 +52464,12 @@ CVE-2022-46361 (An attacker having physical access to
WDM can plug USB device to
NOT-FOR-US: Honeywell
CVE-2022-43485 (Use of Insufficiently Random Values in Honeywell OneWireless.
This vul ...)
NOT-FOR-US: Honeywell
-CVE-2022-4245
- RESERVED
+CVE-2022-4245 (A flaw was found in codehaus-plexus. The
org.codehaus.plexus.util.xml. ...)
- plexus-utils2 3.0.24-1
NOTE: https://security.snyk.io/vuln/SNYK-JAVA-ORGCODEHAUSPLEXUS-461102
NOTE:
https://github.com/codehaus-plexus/plexus-utils/commit/f933e5e78dc2637e485447ed821fe14904f110de
(plexus-utils-3.0.24)
NOTE: https://github.com/codehaus-plexus/plexus-utils/issues/3
-CVE-2022-4244
- RESERVED
+CVE-2022-4244 (A flaw was found in codeplex-codehaus. A directory traversal
attack (a ...)
- plexus-utils2 3.0.24-1
NOTE: https://security.snyk.io/vuln/SNYK-JAVA-ORGCODEHAUSPLEXUS-31521
NOTE: https://github.com/codehaus-plexus/plexus-utils/issues/4
@@ -53768,8 +53882,7 @@ CVE-2022-41802 (Kernel subsystem within
OpenHarmony-v3.1.4 and prior versions in
NOT-FOR-US: OpenHarmony
CVE-2022-4138 (A Cross Site Request Forgery issue has been discovered in
GitLab CE/EE ...)
- gitlab 15.10.8+ds1-2
-CVE-2022-4137
- RESERVED
+CVE-2022-4137 (A reflected cross-site scripting (XSS) vulnerability was found
in the ...)
NOT-FOR-US: Keycloak
CVE-2022-45873 (systemd 250 and 251 allows local users to achieve a
systemd-coredump d ...)
- systemd 252-1
@@ -223674,7 +223787,7 @@ CVE-2020-22221
CVE-2020-22220
RESERVED
CVE-2020-22219 (Buffer Overflow vulnerability in function bitwriter_grow_ in
flac befo ...)
- {DSA-5500-1}
+ {DSA-5500-1 DLA-3581-1}
- flac 1.4.1-1
NOTE: https://github.com/xiph/flac/issues/215
NOTE: https://github.com/xiph/flac/pull/419 (1.4.0)
@@ -224479,6 +224592,7 @@ CVE-2020-21892
CVE-2020-21891
RESERVED
CVE-2020-21890 (Buffer Overflow vulnerability in clj_media_size function in
devices/gd ...)
+ {DLA-3582-1}
- ghostscript 9.51~dfsg-1
NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=701846
NOTE: Prerequisite for fixing commit:
https://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=dbdb5f8527007b482d4e6037b558dbf3e6a06d3a
(ghostpdl-9.51rc1)
@@ -224854,6 +224968,7 @@ CVE-2020-21712
CVE-2020-21711
RESERVED
CVE-2020-21710 (A divide by zero issue discovered in eps_print_page in
gdevepsn.c in A ...)
+ {DLA-3582-1}
- ghostscript 9.51~dfsg-1
NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=701843
NOTE: Fixed by:
https://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=f70ab2044429fe4b991801476ea3f4b4a5c0cdf4
(ghostpdl-9.51rc1)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1dd42851af905bf4e0507ba008f2ee29bbb0b1d7
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1dd42851af905bf4e0507ba008f2ee29bbb0b1d7
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
