proj: X.Org X server and Xwayland
subj: [vs-plain] Embargoed X.Org Security Advisory: Issues in X server and Xwayland
trep: Tue Dec 05 21:17:38 2023
tcrd: December 13, 2023 00:00 UTC
cves: CVE-2023-6377, CVE-2023-6478, ZDI-CAN-22412, ZDI-CAN-22413, ZDI-CAN-22561
toss: Wed Dec 13 13:03:51 2023
soss: [oss-security] FW: X.Org Security Advisory: Issues in X.Org X server prior to 21.1.10 and Xwayland prior to 23.2.3
loss: https://www.openwall.com/lists/oss-security/2023/12/13/1
tpub: Wed Dec 13 02:02:10 2023
lpub: https://lists.x.org/archives/xorg-announce/2023-December/003435.html

proj: SSH protocol
subj: [vs] ...
trep: Mon Dec 11 15:40:29 2023
tcrd: 18th of December 2023 15:00 UTC
cves: CVE-2023-48795
toss: Mon Dec 18 16:47:26 2023
soss: [oss-security] CVE-2023-48795: Prefix Truncation Attacks in SSH Specification (Terrapin Attack)
loss: https://www.openwall.com/lists/oss-security/2023/12/18/3
tpub: Tue Dec 12 20:56:36 2023
lpub: https://groups.google.com/g/golang-announce/c/-n5WqVC18LQ

proj: Debian cpio
subj: [vs-plain] Security vulnerability in Debian's cpio 2.13
trep: Sun Dec 17 15:50:53 2023
tcrd: 2023-12-27
toss: Thu Dec 21 16:50:17 2023
soss: [oss-security] Security vulnerability in Debian's cpio 2.13
loss: https://www.openwall.com/lists/oss-security/2023/12/21/8
tpub: Wed Dec 20 19:03:02 2023
lpub: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059163

proj: xarchiver
subj: [vs-plain] xarchiver: Path traversal with crafted cpio archives
trep: Sun Dec 17 15:50:53 2023
tcrd: 2023-12-27
toss: Wed Dec 27 13:42:05 2023
soss: [oss-security] xarchiver: Path traversal with crafted cpio archives
loss: https://www.openwall.com/lists/oss-security/2023/12/27/1