Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
2d24727c by security tracker role at 2025-01-17T08:11:49+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,325 @@
+CVE-2025-23965 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23963 (Missing Authorization vulnerability in Sven Hofmann & Michael
Schoenro ...)
+ TODO: check
+CVE-2025-23962 (Missing Authorization vulnerability in Goldstar Goldstar
allows Exploi ...)
+ TODO: check
+CVE-2025-23961 (Missing Authorization vulnerability in WP Tasker WordPress
Graphs & Ch ...)
+ TODO: check
+CVE-2025-23957 (Missing Authorization vulnerability in Sur.ly Sur.ly allows
Exploiting ...)
+ TODO: check
+CVE-2025-23955 (Missing Authorization vulnerability in xola.com Xola allows
Exploiting ...)
+ TODO: check
+CVE-2025-23954 (Missing Authorization vulnerability in AWcode & KingfisherFox
Salvador ...)
+ TODO: check
+CVE-2025-23951 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23950 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23947 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23946 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23943 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23941 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23940 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23939 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23936 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23935 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23934 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23933 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23930 (Missing Authorization vulnerability in iTechArt-Group PayPal
Marketing ...)
+ TODO: check
+CVE-2025-23929 (Missing Authorization vulnerability in wishfulthemes Email
Capture & L ...)
+ TODO: check
+CVE-2025-23928 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23927 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23926 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23925 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23924 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23922 (Cross-Site Request Forgery (CSRF) vulnerability in Harsh
iSpring Embed ...)
+ TODO: check
+CVE-2025-23919 (Improper Neutralization of Script-Related HTML Tags in a Web
Page (Bas ...)
+ TODO: check
+CVE-2025-23917 (Missing Authorization vulnerability in Chandrika Guntur,
Morgan Kay Ch ...)
+ TODO: check
+CVE-2025-23916 (Missing Authorization vulnerability in Nuanced Media WP Meetup
allows ...)
+ TODO: check
+CVE-2025-23915 (Improper Control of Filename for Include/Require Statement in
PHP Prog ...)
+ TODO: check
+CVE-2025-23913 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2025-23912 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2025-23911 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2025-23909 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23908 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23907 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23902 (Cross-Site Request Forgery (CSRF) vulnerability in Taras
Dashkevych Er ...)
+ TODO: check
+CVE-2025-23901 (Cross-Site Request Forgery (CSRF) vulnerability in Oliver
Schaal Grava ...)
+ TODO: check
+CVE-2025-23900 (Cross-Site Request Forgery (CSRF) vulnerability in Genkisan
Genki Anno ...)
+ TODO: check
+CVE-2025-23899 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23898 (Cross-Site Request Forgery (CSRF) vulnerability in Ivo Brett
\u2013 Ap ...)
+ TODO: check
+CVE-2025-23897 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23896 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23895 (Cross-Site Request Forgery (CSRF) vulnerability in Dan Cameron
Add RSS ...)
+ TODO: check
+CVE-2025-23893 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23892 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23891 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23890 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23887 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23886 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23884 (Cross-Site Request Forgery (CSRF) vulnerability in Chris
Roberts Annie ...)
+ TODO: check
+CVE-2025-23880 (Cross-Site Request Forgery (CSRF) vulnerability in anmari amr
personal ...)
+ TODO: check
+CVE-2025-23878 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23877 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23876 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23875 (Cross-Site Request Forgery (CSRF) vulnerability in Tim Ridgway
Better ...)
+ TODO: check
+CVE-2025-23873 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23872 (Cross-Site Request Forgery (CSRF) vulnerability in PayForm
PayForm all ...)
+ TODO: check
+CVE-2025-23871 (Cross-Site Request Forgery (CSRF) vulnerability in Bas Matthee
LSD Goo ...)
+ TODO: check
+CVE-2025-23870 (Cross-Site Request Forgery (CSRF) vulnerability in Robert
Nicholson Co ...)
+ TODO: check
+CVE-2025-23869 (Cross-Site Request Forgery (CSRF) vulnerability in Shibu
Lijack a.k.a ...)
+ TODO: check
+CVE-2025-23868 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23865 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23864 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23863 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23862 (Missing Authorization vulnerability in SzMake Contact Form 7
Anti Spam ...)
+ TODO: check
+CVE-2025-23861 (Cross-Site Request Forgery (CSRF) vulnerability in Katz Web
Services, ...)
+ TODO: check
+CVE-2025-23860 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23859 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23856 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23854 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23848 (Cross-Site Request Forgery (CSRF) vulnerability in Daniel
Powney Hotsp ...)
+ TODO: check
+CVE-2025-23844 (Cross-Site Request Forgery (CSRF) vulnerability in wellwisher
Custom W ...)
+ TODO: check
+CVE-2025-23842 (Cross-Site Request Forgery (CSRF) vulnerability in Nilesh
Shiragave Wo ...)
+ TODO: check
+CVE-2025-23841 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23833 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23832 (Cross-Site Request Forgery (CSRF) vulnerability in Matt Gibbs
Admin Cl ...)
+ TODO: check
+CVE-2025-23831 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23830 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23828 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23827 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23826 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23825 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23824 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23823 (Cross-Site Request Forgery (CSRF) vulnerability in jprintf
CNZZ&51LA f ...)
+ TODO: check
+CVE-2025-23822 (Cross-Site Request Forgery (CSRF) vulnerability in Cornea
Alexandru Ca ...)
+ TODO: check
+CVE-2025-23821 (Cross-Site Request Forgery (CSRF) vulnerability in Aleapp WP
Cookies A ...)
+ TODO: check
+CVE-2025-23820 (Cross-Site Request Forgery (CSRF) vulnerability in Laxman
Thapa Conten ...)
+ TODO: check
+CVE-2025-23818 (Cross-Site Request Forgery (CSRF) vulnerability in Peggy Kuo
More Link ...)
+ TODO: check
+CVE-2025-23817 (Cross-Site Request Forgery (CSRF) vulnerability in Mahadir
Ahmad MHR-C ...)
+ TODO: check
+CVE-2025-23816 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23815 (Cross-Site Request Forgery (CSRF) vulnerability in linickx
root Cookie ...)
+ TODO: check
+CVE-2025-23810 (Cross-Site Request Forgery (CSRF) vulnerability in Igor
Sazonov Len Sl ...)
+ TODO: check
+CVE-2025-23808 (Cross-Site Request Forgery (CSRF) vulnerability in Matt van
Andel Cust ...)
+ TODO: check
+CVE-2025-23807 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23805 (Cross-Site Request Forgery (CSRF) vulnerability in SEOReseller
Team SE ...)
+ TODO: check
+CVE-2025-23804 (Cross-Site Request Forgery (CSRF) vulnerability in Shiv
Prakash Tiwari ...)
+ TODO: check
+CVE-2025-23802 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23801 (Cross-Site Request Forgery (CSRF) vulnerability in Benjamin
Guy Style ...)
+ TODO: check
+CVE-2025-23800 (Cross-Site Request Forgery (CSRF) vulnerability in David
Hamilton Oran ...)
+ TODO: check
+CVE-2025-23797 (Cross-Site Request Forgery (CSRF) vulnerability in Mike
Selander WP Op ...)
+ TODO: check
+CVE-2025-23796 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23795 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23794 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23793 (Cross-Site Request Forgery (CSRF) vulnerability in Turcu
Ciprian Auto ...)
+ TODO: check
+CVE-2025-23791 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23785 (Missing Authorization vulnerability in August Infotech AI
Responsive G ...)
+ TODO: check
+CVE-2025-23780 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2025-23779 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2025-23778 (Missing Authorization vulnerability in Pravin Durugkar User
Sync Activ ...)
+ TODO: check
+CVE-2025-23777 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23776 (Missing Authorization vulnerability in Thorn Technologies LLC
Cache Sn ...)
+ TODO: check
+CVE-2025-23775 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23772 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23765 (Cross-Site Request Forgery (CSRF) vulnerability in W3speedster
W3SPEED ...)
+ TODO: check
+CVE-2025-23764 (Missing Authorization vulnerability in Ujjaval Jani Copy Move
Posts al ...)
+ TODO: check
+CVE-2025-23761 (Missing Authorization vulnerability in Alex Volkov Woo Tuner
allows Ex ...)
+ TODO: check
+CVE-2025-23760 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2025-23201 (librenms is a community-based GPL-licensed network monitoring
system. ...)
+ TODO: check
+CVE-2025-23200 (librenms is a community-based GPL-licensed network monitoring
system. ...)
+ TODO: check
+CVE-2025-23199 (librenms is a community-based GPL-licensed network monitoring
system. ...)
+ TODO: check
+CVE-2025-23198 (librenms is a community-based GPL-licensed network monitoring
system. ...)
+ TODO: check
+CVE-2025-21325 (Windows Secure Kernel Mode Elevation of Privilege
Vulnerability)
+ TODO: check
+CVE-2024-57785 (Zenitel AlphaWeb XE v11.2.3.10 was discovered to contain a
local file ...)
+ TODO: check
+CVE-2024-57784 (An issue in the component /php/script_uploads.php of Zenitel
AlphaWeb ...)
+ TODO: check
+CVE-2024-57704 (Tenda AC8v4 V16.03.34.06 has a stack overflow vulnerability.
Affected ...)
+ TODO: check
+CVE-2024-57703 (Tenda AC8v4 V16.03.34.06 has a stack overflow vulnerability.
Affected ...)
+ TODO: check
+CVE-2024-57583 (Tenda AC18 V15.03.05.19 was discovered to contain a command
injection ...)
+ TODO: check
+CVE-2024-57582 (Tenda AC18 V15.03.05.19 was discovered to contain a stack
overflow via ...)
+ TODO: check
+CVE-2024-57581 (Tenda AC18 V15.03.05.19 was discovered to contain a stack
overflow via ...)
+ TODO: check
+CVE-2024-57580 (Tenda AC18 V15.03.05.19 was discovered to contain a stack
overflow via ...)
+ TODO: check
+CVE-2024-57579 (Tenda AC18 V15.03.05.19 was discovered to contain a stack
overflow via ...)
+ TODO: check
+CVE-2024-57578 (Tenda AC18 V15.03.05.19 was discovered to contain a stack
overflow via ...)
+ TODO: check
+CVE-2024-57577 (Tenda AC18 V15.03.05.19 was discovered to contain a stack
overflow via ...)
+ TODO: check
+CVE-2024-57575 (Tenda AC18 V15.03.05.19 was discovered to contain a stack
overflow via ...)
+ TODO: check
+CVE-2024-56144 (librenms is a community-based GPL-licensed network monitoring
system. ...)
+ TODO: check
+CVE-2024-55511 (A null pointer dereference vulnerability in Macrium Reflect
prior to 8 ...)
+ TODO: check
+CVE-2024-54660 (A JNDI injection issue was discovered in Cloudera JDBC
Connector for H ...)
+ TODO: check
+CVE-2024-53553 (An issue in OPEXUS FOIAXPRESS PUBLIC ACCESS LINK v11.1.0
allows attack ...)
+ TODO: check
+CVE-2024-52363 (IBM InfoSphere Information Server 11.7 could allow a remote
attacker t ...)
+ TODO: check
+CVE-2024-51462 (IBM QRadar WinCollect Agent 10.0.0 through 10.1.12 could allow
a remot ...)
+ TODO: check
+CVE-2024-48460 (An issue in Eugeny Tabby 1.0.213 allows a remote attacker to
obtain se ...)
+ TODO: check
+CVE-2024-46450 (Incorrect access control in Tenda AC1200 Smart Dual-Band WiFi
Router M ...)
+ TODO: check
+CVE-2024-40514 (Insecure Permissions vulnerability in themesebrand Chatvia
v.5.3.2 all ...)
+ TODO: check
+CVE-2024-40513 (An issue in themesebrand Chatvia v.5.3.2 allows a remote
attacker to e ...)
+ TODO: check
+CVE-2024-34579 (Fuji Electric Alpha5 SMART is vulnerable to a stack-based
buffer ove ...)
+ TODO: check
+CVE-2024-13434 (The WP Inventory Manager plugin for WordPress is vulnerable to
Reflect ...)
+ TODO: check
+CVE-2024-13401 (The Payment Button for PayPal plugin for WordPress is
vulnerable to St ...)
+ TODO: check
+CVE-2024-13398 (The Checkout for PayPal plugin for WordPress is vulnerable to
Stored C ...)
+ TODO: check
+CVE-2024-13386 (The quote-posttype-plugin plugin for WordPress is vulnerable
to Stored ...)
+ TODO: check
+CVE-2024-13367 (The Sandbox plugin for WordPress is vulnerable to unauthorized
access ...)
+ TODO: check
+CVE-2024-13366 (The Sandbox plugin for WordPress is vulnerable to Reflected
Cross-Site ...)
+ TODO: check
+CVE-2024-13333 (The Advanced File Manager plugin for WordPress is vulnerable
to arbitr ...)
+ TODO: check
+CVE-2024-12637 (The Moving Users plugin for WordPress is vulnerable to
Sensitive Infor ...)
+ TODO: check
+CVE-2024-12598 (The MyBookProgress by Stormhill Media plugin for WordPress is
vulnerab ...)
+ TODO: check
+CVE-2024-12508 (The Glofox Shortcodes plugin for WordPress is vulnerable to
Stored Cro ...)
+ TODO: check
+CVE-2024-12466 (The Proofreading plugin for WordPress is vulnerable to
Reflected Cross ...)
+ TODO: check
+CVE-2024-12203 (The RSS Icon Widget plugin for WordPress is vulnerable to
Stored Cross ...)
+ TODO: check
+CVE-2024-11146 (TrueFiling is a collaborative, web-based electronic filing
system wher ...)
+ TODO: check
+CVE-2024-10799 (The Eventer plugin for WordPress is vulnerable to Directory
Traversal ...)
+ TODO: check
CVE-2024-45341
- golang-1.23 1.23.5-1
- golang-1.22 1.22.11-1
@@ -7859,6 +8181,7 @@ CVE-2024-56349 (In JetBrains TeamCity before 2024.12
improper access control all
CVE-2024-56348 (In JetBrains TeamCity before 2024.12 improper access control
allowed v ...)
NOT-FOR-US: JetBrains TeamCity
CVE-2024-56337 (Time-of-check Time-of-use (TOCTOU) Race Condition
vulnerability in Apa ...)
+ {DLA-4017-1}
- tomcat10 10.1.34-1
[bookworm] - tomcat10 <no-dsa> (Minor issue)
- tomcat9 9.0.70-2
@@ -8521,6 +8844,7 @@ CVE-2024-52542 (Dell AppSync, version 4.6.0.x, contain a
Symbolic Link (Symlink)
CVE-2024-51479 (Next.js is a React framework for building full-stack web
applications. ...)
NOT-FOR-US: Next.js
CVE-2024-50379 (Time-of-check Time-of-use (TOCTOU) Race Condition
vulnerability during ...)
+ {DLA-4017-1}
- tomcat10 10.1.34-1
[bookworm] - tomcat10 <no-dsa> (Minor issue)
- tomcat9 9.0.70-2
@@ -9844,7 +10168,8 @@ CVE-2024-52901 (IBM InfoSphere Information Server 11.7
could allow an authentica
NOT-FOR-US: IBM
CVE-2024-50584 (An authenticated attacker with the user/role "Poweruser" can
perform a ...)
NOT-FOR-US: Scan2Net
-CVE-2024-4109 (A flaw was found in Undertow. An HTTP request header value from
a prev ...)
+CVE-2024-4109
+ REJECTED
- undertow <unfixed>
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2272325
NOTE: https://github.com/undertow-io/undertow/pull/1668
@@ -17108,6 +17433,7 @@ CVE-2024-52317 (Incorrect object re-cycling and re-use
vulnerability in Apache T
NOTE:
https://github.com/apache/tomcat/commit/146f94f87ea398fb592c7a20a5ccbef95e9dd72b
(10.1.31)
NOTE:
https://github.com/apache/tomcat/commit/47307ee27abcdea2ee40e33897aca760083de46a
(9.0.96)
CVE-2024-52316 (Unchecked Error Condition vulnerability in Apache Tomcat. If
Tomcat is ...)
+ {DLA-4017-1}
- tomcat10 10.1.31-1
[bookworm] - tomcat10 <postponed> (Minor issue, fixed along in next DSA)
- tomcat9 9.0.70-2
@@ -52354,6 +52680,7 @@ CVE-2024-35234 (Discourse is an open-source discussion
platform. Prior to versio
CVE-2024-35227 (Discourse is an open-source discussion platform. Prior to
version 3.2. ...)
NOT-FOR-US: Discourse
CVE-2024-38286 (Allocation of Resources Without Limits or Throttling
vulnerability in ...)
+ {DLA-4017-1}
- tomcat10 10.1.25-1
[bookworm] - tomcat10 <postponed> (Minor issue, fixed along in next DSA)
- tomcat9 9.0.70-2
@@ -102079,6 +102406,7 @@ CVE-2023-29495 (Improper input validation for some
Intel NUC BIOS firmware befor
CVE-2023-28743 (Improper input validation for some Intel NUC BIOS firmware
before vers ...)
NOT-FOR-US: Intel
CVE-2024-21733 (Generation of Error Message Containing Sensitive Information
vulnerabi ...)
+ {DLA-4017-1}
- tomcat9 9.0.53-1
[buster] - tomcat9 <postponed> (Minor issue, fix along in next update)
NOTE: https://www.openwall.com/lists/oss-security/2024/01/19/2
@@ -171885,7 +172213,7 @@ CVE-2023-22141
CVE-2023-22140
RESERVED
CVE-2023-22139
- RESERVED
+ REJECTED
CVE-2023-22138
RESERVED
CVE-2023-22137
@@ -453725,7 +454053,7 @@ CVE-2019-3311
CVE-2019-3310
RESERVED
CVE-2019-3309
- RESERVED
+ REJECTED
CVE-2019-3308
RESERVED
CVE-2019-3307
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2d24727c98f68cccc7789b6bacc0d9fd01417777
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2d24727c98f68cccc7789b6bacc0d9fd01417777
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
