Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
37aca15d by security tracker role at 2023-11-27T08:11:38+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,45 @@
+CVE-2023-6313 (A vulnerability was found in SourceCodester URL Shortener 1.0.
It has ...)
+ TODO: check
+CVE-2023-6312 (A vulnerability was found in SourceCodester Loan Management
System 1.0 ...)
+ TODO: check
+CVE-2023-6311 (A vulnerability was found in SourceCodester Loan Management
System 1.0 ...)
+ TODO: check
+CVE-2023-6310 (A vulnerability has been found in SourceCodester Loan
Management Syste ...)
+ TODO: check
+CVE-2023-6309 (A vulnerability, which was classified as critical, was found in
moses- ...)
+ TODO: check
+CVE-2023-6308 (A vulnerability, which was classified as critical, has been
found in X ...)
+ TODO: check
+CVE-2023-6307 (A vulnerability classified as critical was found in jeecgboot
JimuRepo ...)
+ TODO: check
+CVE-2023-6306 (A vulnerability classified as critical has been found in
SourceCodeste ...)
+ TODO: check
+CVE-2023-6305 (A vulnerability was found in SourceCodester Free and Open
Source Inven ...)
+ TODO: check
+CVE-2023-6304 (A vulnerability was found in Tecno 4G Portable WiFi TR118
TR118-M30E-R ...)
+ TODO: check
+CVE-2023-6303 (A vulnerability was found in CSZCMS 1.3.0. It has been
classified as p ...)
+ TODO: check
+CVE-2023-6302 (A vulnerability was found in CSZCMS 1.3.0 and classified as
critical. ...)
+ TODO: check
+CVE-2023-6301 (A vulnerability has been found in SourceCodester Best Courier
Manageme ...)
+ TODO: check
+CVE-2023-6300 (A vulnerability, which was classified as problematic, was found
in Sou ...)
+ TODO: check
+CVE-2023-6299 (A vulnerability, which was classified as problematic, has been
found i ...)
+ TODO: check
+CVE-2023-6298 (A vulnerability classified as problematic was found in Apryse
iText 8. ...)
+ TODO: check
+CVE-2023-6297 (A vulnerability classified as problematic has been found in
PHPGurukul ...)
+ TODO: check
+CVE-2023-6296 (A vulnerability was found in osCommerce 4. It has been rated as
proble ...)
+ TODO: check
+CVE-2023-49322 (Certain WithSecure products allow a Denial of Service because
there is ...)
+ TODO: check
+CVE-2023-49321 (Certain WithSecure products allow a Denial of Service because
scanning ...)
+ TODO: check
+CVE-2023-49312 (Precision Bridge PrecisionBridge.exe (aka the thick client)
before 7.3 ...)
+ TODO: check
CVE-2023-47039
- perl <not-affected> (Windows specific issue)
CVE-2023-47038 [Write past buffer end via illegal user-defined Unicode
property]
@@ -3109,6 +3151,7 @@ CVE-2023-41685 (Improper Neutralization of Special
Elements used in an SQL Comma
CVE-2023-41378 (In certain conditions for Calico Typha (v3.26.2, v3.25.1 and
below), a ...)
NOT-FOR-US: Calico Typha
CVE-2023-40661 (Several memory vulnerabilities were identified within the
OpenSC packa ...)
+ {DLA-3668-1}
- opensc 0.23.0-2 (bug #1055522)
[bookworm] - opensc <no-dsa> (Minor issue)
[bullseye] - opensc <no-dsa> (Minor issue)
@@ -3116,6 +3159,7 @@ CVE-2023-40661 (Several memory vulnerabilities were
identified within the OpenSC
NOTE: https://github.com/OpenSC/OpenSC/wiki/CVE-2023-40661
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2240913#c1
CVE-2023-40660 (A flaw was found in OpenSC packages that allow a potential PIN
bypass. ...)
+ {DLA-3668-1}
- opensc 0.23.0-2 (bug #1055521)
[bookworm] - opensc <no-dsa> (Minor issue)
[bullseye] - opensc <no-dsa> (Minor issue)
@@ -8694,6 +8738,7 @@ CVE-2023-3701 (Aqua Drive, in its 2.4 version, is
vulnerable to a relative path
CVE-2023-3665 (A code injection vulnerability in Trellix ENS 10.7.0 April 2023
releas ...)
NOT-FOR-US: Trellix
CVE-2023-3576 (A memory leak flaw was found in Libtiff's tiffcrop utility.
This issue ...)
+ {DSA-5567-1}
- tiff 4.5.1~rc3-1
[buster] - tiff <postponed> (Minor issue, memory leak in CLI tool)
NOTE: https://gitlab.com/libtiff/libtiff/-/merge_requests/475
@@ -18945,13 +18990,13 @@ CVE-2023-32232 (An issue was discovered in Vasion
PrinterLogic Client for Window
CVE-2023-32231 (An issue was discovered in Vasion PrinterLogic Client for
Windows befo ...)
NOT-FOR-US: Vasion
CVE-2023-41175 (A vulnerability was found in libtiff due to multiple potential
integer ...)
- {DLA-3513-1}
+ {DSA-5567-1 DLA-3513-1}
- tiff 4.5.1+git230720-1
NOTE: https://gitlab.com/libtiff/libtiff/-/issues/592
NOTE:
https://gitlab.com/libtiff/libtiff/-/commit/6e2dac5f904496d127c92ddc4e56eccfca25c2ee
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2235264
CVE-2023-40745 (LibTIFF is vulnerable to an integer overflow. This flaw allows
remote ...)
- {DLA-3513-1}
+ {DSA-5567-1 DLA-3513-1}
- tiff 4.5.1+git230720-1
NOTE:
https://gitlab.com/libtiff/libtiff/-/commit/4fc16f649fa2875d5c388cf2edc295510a247ee5
NOTE: https://gitlab.com/libtiff/libtiff/-/issues/591
@@ -45624,8 +45669,8 @@ CVE-2023-25634
RESERVED
CVE-2023-25633
RESERVED
-CVE-2023-25632
- RESERVED
+CVE-2023-25632 (The Android Mobile Whale browser app before 3.0.1.2 allows the
attacke ...)
+ TODO: check
CVE-2023-25631
RESERVED
CVE-2023-25630
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/37aca15dea7820eff471cabaa5a928e6c2a31da0
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/37aca15dea7820eff471cabaa5a928e6c2a31da0
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
