proj: curl
subj: [vs-plain] : CVE-2023-38545 curl SOCKS5 heap buffer overflow (1/2)
trep: Tue Oct 03 06:57:43 2023
tcrd: October 11, around 06:00 UTC
cves: CVE-2023-38545
toss: Wed Oct 11 05:58:55 2023
soss: [oss-security] [SECURITY ADVISORY] curl: CVE-2023-38545: SOCKS5 heap buffer overflow
loss: https://www.openwall.com/lists/oss-security/2023/10/11/1
#tpub: Tue Oct 10 16:25:00 2023 link/time for the apology, have no link for the actual leak (removed?)
#lpub: https://curl.se/mail/lib-2023-10/0021.html

proj: curl
subj: [vs-plain] : CVE-2023-38546 curl cookie injection with none file (2/2)
trep: Tue Oct 03 06:57:52 2023
tcrd: October 11 2023
cves: CVE-2023-38546
toss: Wed Oct 11 05:59:15 2023
soss: [oss-security] [SECURITY ADVISORY] curl: CVE-2023-38546
loss: https://www.openwall.com/lists/oss-security/2023/10/11/2

proj: OpenSSL
subj: [vs-plain] Embargoed OpenSSL security issue
trep: Tue Oct 10 14:57:08 2023
tcrd: 24th October 2023
cves: CVE-2023-5363, GHSA-q3f8-53qj-r58x
toss: Tue Oct 24 15:14:46 2023
soss: [oss-security] OpenSSL Security Advisory
loss: https://www.openwall.com/lists/oss-security/2023/10/24/1

proj: X.Org X server
subj: [vs-plain] Embargoed X.Org Security Advisory: Multiple issues in X.Org X server
trep: Tue Oct 17 05:13:14 2023
tcrd: October 25, 2023
cves: CVE-2023-5367, CVE-2023-5380, CVE-2023-5574, ZDI-CAN-22153, ZDI-CAN-21608, ZDI-CAN-21213
toss: Wed Oct 25 11:06:15 2023
soss: [oss-security] FW: X.Org Security Advisory: Issues in X.Org X server prior to 21.1.9 and Xwayland prior to 23.2.2
loss: https://www.openwall.com/lists/oss-security/2023/10/25/1
tpub: Wed Oct 25 01:53:55 2023
lpub: https://lists.x.org/archives/xorg-announce/2023-October/003430.html

proj: open-vm-tools
subj: [vs-plain] SAML Bypass in VMware Tools CVE-2023-34058
trep: Thu Oct 19 18:43:23 2023
tcrd: October 26th, 2023
cves: CVE-2023-34058
toss: Fri Oct 27 08:36:14 2023
soss: [oss-security] CVE-2023-34058 - SAML Token Signature Bypass in open-vm-tools
loss: https://www.openwall.com/lists/oss-security/2023/10/27/1

proj: open-vm-tools
subj: [vs-plain] file descriptor hijack in VMware Tools CVE-2023-34059
trep: Thu Oct 19 18:43:46 2023
tcrd: October 26th, 2023
cves: CVE-2023-34059
toss: Fri Oct 27 08:36:17 2023
soss: [oss-security] CVE-2023-34059 - File Descriptor Hijack vulnerability in open-vm-tools
loss: https://www.openwall.com/lists/oss-security/2023/10/27/2