Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
453ff0a1 by security tracker role at 2023-09-02T08:12:11+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,5 @@
+CVE-2023-4718 (The Font Awesome 4 Menus plugin for WordPress is vulnerable to
Stored ...)
+ TODO: check
CVE-2023-4722 (Integer Overflow or Wraparound in GitHub repository gpac/gpac
prior to ...)
- gpac <unfixed>
[buster] - gpac <end-of-life> (EOL in buster LTS)
@@ -9983,7 +9985,7 @@ CVE-2023-35808 (An issue was discovered in SugarCRM
Enterprise before 11.0.6 and
CVE-2014-125106 (Nanopb before 0.3.1 allows size_t overflows in pb_dec_bytes
and pb_dec ...)
- nanopb <not-affected> (Fixed before initial upload to Debian)
NOTE:
https://github.com/nanopb/nanopb/commit/d2099cc8f1adb33d427a44a5e32ed27b647c7168
(nanopb-0.3.1)
-CVE-2023-3297
+CVE-2023-3297 (In Ubuntu's accountsservice an unprivileged local attacker can
trigger ...)
- accountsservice <not-affected> (Ubuntu specific
0010-set-language.patch not applied in Debian)
NOTE:
https://bugs.launchpad.net/ubuntu/+source/accountsservice/+bug/2024182
CVE-2023-3295 (The Unlimited Elements For Elementor (Free Widgets, Addons,
Templates) ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/453ff0a19ff114670ccd6d7bbdeb7d74041133a2
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/453ff0a19ff114670ccd6d7bbdeb7d74041133a2
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
