[Git][security-tracker-team/security-tracker][master] Adapt fixed version for CVE-2023-4421/nss

Salvatore Bonaccorso (@carnil) Wed, 18 Oct 2023 08:40:28 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
02e4ee4f by Salvatore Bonaccorso at 2023-10-18T17:39:28+02:00
Adapt fixed version for CVE-2023-4421/nss

As it was fixed in 3.61 upstream and so included in 2:3.61-1 upload to
unstable.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1144,7 +1144,8 @@ CVE-2023-5218 (Use after free in Site Isolation in Google 
Chrome prior to 118.0.
        - chromium 118.0.5993.70-1
        [buster] - chromium <end-of-life> (see DSA 5046)
 CVE-2023-4421
-       - nss 2:3.93-1
+       - nss 2:3.61-1
+       NOTE: https://bugzilla.mozilla.org/show_bug.cgi?id=1651411
        NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2238677
        NOTE: 
https://hg.mozilla.org/projects/nss/rev/fc05574c739947d615ab0b2b2b564f01c922eccd
 CVE-2023-38546 (This flaw allows an attacker to insert cookies at will into a 
running  ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/02e4ee4f2589000dfc4e9f95b22ecdce93f8913a

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/02e4ee4f2589000dfc4e9f95b22ecdce93f8913a
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Adapt fixed version for CVE-2023-4421/nss

Reply via email to