Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
c4de706a by Salvatore Bonaccorso at 2023-12-31T10:24:48+01:00
Track fixed version for CVE-2023-34194/tinyxml
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3519,7 +3519,7 @@ CVE-2023-42495 (Dasan Networks - W-Web versions 1.22-1.27
- CWE-78: Improper Neu
NOT-FOR-US: Dasan Networks W-Web
CVE-2023-34194 (StringEqual in TiXmlDeclaration::Parse in tinyxmlparser.cpp in
TinyXML ...)
{DLA-3701-1}
- - tinyxml <unfixed> (bug #1059315)
+ - tinyxml 2.6.2-6.1 (bug #1059315)
NOTE: https://www.forescout.com/resources/sierra21-vulnerabilities
NOTE: Debian (non upstream) patch:
https://salsa.debian.org/debian/tinyxml/-/raw/2366e1f23d059d4c20c43c54176b6bd78d6a83fc/debian/patches/CVE-2023-34194.patch
CVE-2023-6707 (Use after free in CSS in Google Chrome prior to 120.0.6099.109
allowed ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c4de706a32ff39619a13a1104eaecf7e7b100663
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c4de706a32ff39619a13a1104eaecf7e7b100663
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
