proj: open-vm-tools
subj: [vs] [EMBARGOED] CVE-2023-20867
trep: Tue Jun 06 15:31:40 2023
tcrd: June 13th, 2023
cves: CVE-2023-20867, VMSA-2023-0013
toss: Mon Oct 16 01:49:50 2023
soss: [oss-security] CVE-2023-20867: open-vm-tools: Authentication Bypass vulnerability in the vgauth module
loss: https://www.openwall.com/lists/oss-security/2023/10/16/2
tpub: Tue Jun 13 15:31:40 2023
lpub: https://www.vmware.com/security/advisories/VMSA-2023-0013.html

proj: cpdb-libs
subj: [vs-plain] CVE-2023-34095: Buffer overflows via scanf
trep: Tue Jun 06 17:37:22 2023
tcrd: June 14, 2023
cves: CVE-2023-34095, GHSA-25j7-9gfc-f46x
toss: Wed Jun 14 17:18:55 2023
soss: [oss-security] CVE-2023-34095: cpdb-libs: Buffer overflows via scanf
loss: https://www.openwall.com/lists/oss-security/2023/06/14/7

proj: libX11
subj: [vs-plain] Embargoed X.Org Security Advisory: Buffer overflows in InitExt.c in libX11 prior to 1.8.6 [CVE-2023-3138]
trep: Fri Jun 09 00:16:11 2023
tcrd: June 15, 2023
cves: CVE-2023-3138
toss: Thu Jun 15 16:40:01 2023
soss: [oss-security] Fwd: [ANNOUNCE] X.Org Security Advisory: Sub-object overflows in libX11
loss: https://www.openwall.com/lists/oss-security/2023/06/15/2

proj: CUPS
subj: [vs-plain] EMBARGOED CVE-2023-34241 use-after-free in cupsdAcceptClient()
trep: Tue Jun 13 10:28:42 2023
tcrd: June 22nd, 12:00 PM CET
cves: CVE-2023-34241
toss: Thu Jun 22 10:57:45 2023
soss: [oss-security] CVE-2023-34241: CUPS: use-after-free in cupsdAcceptClient()
loss: https://www.openwall.com/lists/oss-security/2023/06/22/4

proj: Linux
subj: [vs-plain] DirtyVMA: Privilege escalation via non-RCU-protected VMA traversal
trep: Wed Jun 14 17:36:30 2023
tcrd: June 22 or June 23 \\ June 29, 17:30 UTC \\ Wednesday, July 5
cves: CVE-2023-3269, StackRot
toss: Wed Jul 05 12:18:37 2023
soss: [oss-security] StackRot (CVE-2023-3269): Linux kernel privilege escalation vulnerability
loss: https://www.openwall.com/lists/oss-security/2023/07/05/1

proj: Linux
subj: [vs-plain] DECnet vulnerability disclosure
trep: Sat Jun 17 22:58:37 2023
tcrd: 7-day embargo
cves: CVE-2023-3338
toss: Sat Jun 24 16:24:01 2023
soss: [oss-security] CVE-2023-3338: Linux Kernel NULL Pointer Dereference in DECnet
loss: https://www.openwall.com/lists/oss-security/2023/06/24/3

proj: BIND 9
subj: [vs] ...
trep: Tue Jun 20 12:08:48 2023
tcrd: 21 June 2023
cves: CVE-2023-2828, CVE-2023-2911
toss: Wed Jun 21 17:14:40 2023
soss: [oss-security] ISC has disclosed two vulnerabilities in BIND 9 (CVE-2023-2828, CVE-2023-2911)
loss: https://www.openwall.com/lists/oss-security/2023/06/21/6