Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
623828ac by Salvatore Bonaccorso at 2023-10-04T21:15:40+02:00
CVE-2023-469{2,3}: Reference as well kernel-list post for easier patch reviews
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -209,9 +209,11 @@ CVE-2023-2544 (Authorization bypass vulnerability in UPV
PEIX, affecting the com
CVE-2023-4693 [Crafted file system images can cause out-of-bounds write and
may leak sensitive information into the GRUB pager]
- grub2 2.12~rc1-11
NOTE:
https://lists.gnu.org/archive/html/grub-devel/2023-10/msg00028.html
+ NOTE:
https://lore.kernel.org/all/zrxk8s4nqv2jbq%[email protected]/
CVE-2023-4692 [Crafted file system images can cause heap-based buffer overflow
and may allow arbitrary code execution and secure boot bypass]
- grub2 2.12~rc1-11
NOTE:
https://lists.gnu.org/archive/html/grub-devel/2023-10/msg00028.html
+ NOTE:
https://lore.kernel.org/all/zrxk8s4nqv2jbq%[email protected]/
CVE-2023-4911 (A buffer overflow was discovered in the GNU C Library's dynamic
loader ...)
{DSA-5514-1}
- glibc 2.37-12
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/623828aca02b2fa6949bd4c5717b3644ee4a3907
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/623828aca02b2fa6949bd4c5717b3644ee4a3907
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
