[Git][security-tracker-team/security-tracker][master] Add three ne symfony issues

Fri, 10 Nov 2023 13:38:41 -0800 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
45d89c7c by Salvatore Bonaccorso at 2023-11-10T22:37:48+01:00
Add three ne symfony issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -27,11 +27,17 @@ CVE-2023-47119 (Discourse is an open source platform for 
community discussion. P
 CVE-2023-47108 (OpenTelemetry-Go Contrib is a collection of third-party 
packages for O ...)
        TODO: check
 CVE-2023-46735 (Symfony is a PHP framework for web and console applications 
and a set  ...)
-       TODO: check
+       - symfony <not-affected> (Vulnerable code introduced later in v6.3.0)
+       NOTE: 
https://github.com/symfony/symfony/security/advisories/GHSA-72x2-5c85-6wmr
+       NOTE: 
https://github.com/symfony/symfony/commit/8128c302430394f639e818a7103b3f6815d8d962
 (v6.3.8)
 CVE-2023-46734 (Symfony is a PHP framework for web and console applications 
and a set  ...)
-       TODO: check
+       - symfony <unfixed>
+       NOTE: 
https://github.com/symfony/symfony/security/advisories/GHSA-q847-2q57-wmr3
+       NOTE: 
https://github.com/symfony/symfony/commit/9da9a145ce57e4585031ad4bee37c497353eec7c
 (v4.4.51, v5.4.31, v6.3.8)
 CVE-2023-46733 (Symfony is a PHP framework for web and console applications 
and a set  ...)
-       TODO: check
+       - symfony <unfixed>
+       NOTE: 
https://github.com/symfony/symfony/security/advisories/GHSA-m2wj-r6g3-fxfx
+       NOTE: 
https://github.com/symfony/symfony/commit/dc356499d5ceb86f7cf2b4c7f032eca97061ed74
 (v5.4.31, v6.3.8)
 CVE-2023-46130 (Discourse is an open source platform for community discussion. 
Prior t ...)
        NOT-FOR-US: Discourse
 CVE-2023-45816 (Discourse is an open source platform for community discussion. 
Prior t ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/45d89c7c5d1f5df82fe7e562dd2bb6ee1f28bd2f

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/45d89c7c5d1f5df82fe7e562dd2bb6ee1f28bd2f
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to