[Git][security-tracker-team/security-tracker][master] bullseye/bookworm triage

Mon, 23 Oct 2023 11:45:28 -0700 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
a159b1c2 by Moritz Muehlenhoff at 2023-10-23T20:45:06+02:00
bullseye/bookworm triage

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -32,6 +32,8 @@ CVE-2023-46319 (WALLIX Bastion 9.x before 9.0.9 and 10.x 
before 10.0.5 allows un
        NOT-FOR-US: WALLIX Bastion
 CVE-2023-46317 (Knot Resolver before 5.7.0 performs many TCP reconnections 
upon receiv ...)
        - knot-resolver 5.7.0-1
+       [bookworm] - knot-resolver <no-dsa> (Minor issue)
+       [bullseye] - knot-resolver <no-dsa> (Minor issue)
        NOTE: https://www.knot-resolver.cz/2023-08-22-knot-resolver-5.7.0.html
        NOTE: https://gitlab.nic.cz/knot/knot-resolver/-/merge_requests/1448
 CVE-2023-46315 (The zanllp sd-webui-infinite-image-browsing (aka Infinite 
Image Browsi ...)
@@ -99,6 +101,8 @@ CVE-2023-39333
        NOTE: 
https://github.com/nodejs/node/commit/eaf9083cf1e43bd897ac8244dcc0f4e3500150ca
 CVE-2023-5388
        - nss <unfixed>
+       [bookworm] - nss <postponed> (Minor issue, revisit once fixed upstream)
+       [bullseye] - nss <postponed> (Minor issue, revisit once fixed upstream)
        NOTE: https://people.redhat.com/~hkario/marvin/
 CVE-2023-5551
        - moodle <removed>
@@ -303,6 +307,7 @@ CVE-2023-46117 (reconFTW is a tool designed to perform 
automated recon on a targ
        NOT-FOR-US: reconFTW
 CVE-2023-45805 (pdm is a Python package and dependency manager supporting the 
latest P ...)
        - pdm <unfixed>
+       [bookworm] - pdm <no-dsa> (Minor issue)
        NOTE: 
https://github.com/pdm-project/pdm/security/advisories/GHSA-j44v-mmf2-xvm9
        NOTE: 
https://github.com/pdm-project/pdm/commit/6853e2642dfa281d4a9958fbc6c95b7e32d84831
 CVE-2023-44483 (All versions of Apache Santuario - XML Security for Java prior 
to 2.2. ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a159b1c2ddd92aa5a4e7578c83e3e06329280710

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a159b1c2ddd92aa5a4e7578c83e3e06329280710
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to