[Git][security-tracker-team/security-tracker][master] automatic update

Sat, 11 Nov 2023 12:12:49 -0800 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
d2f78378 by security tracker role at 2023-11-11T20:12:25+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,9 @@
+CVE-2023-5959 (A vulnerability, which was classified as problematic, was found 
in Bei ...)
+       TODO: check
+CVE-2023-47390 (Headscale through 0.22.3 writes bearer tokens to info-level 
logs.)
+       TODO: check
+CVE-2023-43057 (IBM QRadar SIEM 7.5.0 is vulnerable to cross-site scripting. 
This vuln ...)
+       TODO: check
 CVE-2023-4804 (Anunauthorized user could access debug features in Quantum HD 
Unity pr ...)
        NOT-FOR-US: Quantum HD Unity
 CVE-2023-47122 (Gitsign is software for keyless Git signing using Sigstore. In 
version ...)
@@ -2153,7 +2159,7 @@ CVE-2023-46852 (In Memcached before 1.6.22, a buffer 
overflow exists when proces
        [bullseye] - memcached <no-dsa> (Minor issue)
        [buster] - memcached <not-affected> (The vulnerable code was introduced 
later)
        NOTE: 
https://github.com/memcached/memcached/commit/76a6c363c18cfe7b6a1524ae64202ac9db330767
 (1.6.22)
-CVE-2023-46604 (Apache ActiveMQ is vulnerable to Remote Code Execution.The 
vulnerabili ...)
+CVE-2023-46604 (The Java OpenWire protocol marshaller is vulnerable to Remote 
Code  Ex ...)
        - activemq <unfixed> (bug #1054909)
        NOTE: 
https://activemq.apache.org/security-advisories.data/CVE-2023-46604-announcement.txt
        NOTE: http://www.openwall.com/lists/oss-security/2023/10/27/5



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d2f783787946380cc16370a824c46206f3d6dd26

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d2f783787946380cc16370a824c46206f3d6dd26
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to