bookworm triage

Moritz Muehlenhoff (@jmm) Tue, 10 Oct 2023 02:52:55 -0700


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
009104d1 by Moritz Muehlenhoff at 2023-10-10T11:52:30+02:00
bullseye/bookworm triage

- - - - -


2 changed files:

- data/CVE/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -142,6 +142,8 @@ CVE-2023-43696 (Improper Access Control in SICK APU allows 
an unprivileged remot
        NOT-FOR-US: SICK
 CVE-2023-43643 (AntiSamy is a library for performing fast, configurable 
cleansing of H ...)
        - libowasp-antisamy-java <unfixed>
+       [bookworm] - libowasp-antisamy-java <no-dsa> (Minor issue)
+       [bullseye] - libowasp-antisamy-java <no-dsa> (Minor issue)
        NOTE: 
https://github.com/nahsra/antisamy/security/advisories/GHSA-pcf2-gh6g-h5r2
        NOTE: 
https://github.com/nahsra/antisamy/commit/05c52b98bb845b8175b8406bd2f391ce334a05d6
 (v1.7.4)
 CVE-2023-42455 (Wazuh is a security detection, visibility, and compliance open 
source  ...)
@@ -1835,6 +1837,8 @@ CVE-2023-43124 (BIG-IP APM clients may send IP traffic 
outside of the VPN tunnel
        NOT-FOR-US: F5 BIG-IP
 CVE-2023-42822 (xrdp is an open source remote desktop protocol server. Access 
to the f ...)
        - xrdp <unfixed> (bug #1053284)
+       [bookworm] - xrdp <no-dsa> (Minor issue)
+       [bullseye] - xrdp <no-dsa> (Minor issue)
        NOTE: 
https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-2hjx-rm4f-r9hw
        NOTE: 
https://github.com/neutrinolabs/xrdp/commit/73acbe1f7957c65122b00de4d6f57a8d0d257c40
 CVE-2023-42657 (In WS_FTP Server versions prior to 8.7.4 and 8.8.2, a 
directory traver ...)


=====================================
data/dsa-needed.txt
=====================================
@@ -25,6 +25,8 @@ gpac/oldstable (jmm)
 --
 gst-plugins-bad1.0 (carnil)
 --
+libcue (jmm)
+--
 libreswan (jmm)
   Maintainer prepared bookworm-security update, but needs work on 
bullseye-security backports
 --



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/009104d18850e65a51d811e0cff2fc697ed4ae8d

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/009104d18850e65a51d811e0cff2fc697ed4ae8d
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] bullseye/bookworm triage

Reply via email to