Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
bac249d4 by Salvatore Bonaccorso at 2023-01-12T06:33:32+01:00
Mark guacamole-client as removed from unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -89586,7 +89586,7 @@ CVE-2021-44001 (A vulnerability has been identified in
JT2Go (All versions <
CVE-2021-44000 (A vulnerability has been identified in JT2Go (All versions
< V13.2. ...)
NOT-FOR-US: JT2Go / Siemens
CVE-2021-43999 (Apache Guacamole 1.2.0 and 1.3.0 do not properly validate
responses re ...)
- - guacamole-client <unfixed> (bug #1015986)
+ - guacamole-client <removed> (bug #1015986)
[stretch] - guacamole-client <not-affected> (SAML is not supported)
NOTE: https://www.openwall.com/lists/oss-security/2022/01/11/7
CVE-2021-3976 (kimai2 is vulnerable to Cross-Site Request Forgery (CSRF) ...)
@@ -99117,7 +99117,7 @@ CVE-2021-41769 (A vulnerability has been identified in
SIPROTEC 5 6MD85 devices
CVE-2021-41768
RESERVED
CVE-2021-41767 (Apache Guacamole 1.3.0 and older may incorrectly include a
private tun ...)
- - guacamole-client <unfixed> (bug #1015986)
+ - guacamole-client <removed> (bug #1015986)
[stretch] - guacamole-client <end-of-life> (unmaintained stretch-only
package)
NOTE: https://www.openwall.com/lists/oss-security/2022/01/11/6
CVE-2021-3837 (openwhyd is vulnerable to Improper Authorization ...)
@@ -204062,7 +204062,7 @@ CVE-2020-11998 (A regression has been introduced in
the commit preventing JMX re
- activemq <not-affected> (Only affects 5.15.12)
NOTE:
http://activemq.apache.org/security-advisories.data/CVE-2020-11998-announcement.txt
CVE-2020-11997 (Apache Guacamole 1.2.0 and earlier do not consistently
restrict access ...)
- - guacamole-client <unfixed> (bug #1015986)
+ - guacamole-client <removed> (bug #1015986)
[stretch] - guacamole-client <ignored> (Minor issue; fix intrusive to
backport)
NOTE:
https://lists.apache.org/thread.html/r1a9ae9d1608c9f846875c4191cd738f95543d1be06b52dc1320e8117%40%3Cannounce.guacamole.apache.org%3E
NOTE: https://issues.apache.org/jira/browse/GUACAMOLE-1123
@@ -344087,7 +344087,7 @@ CVE-2017-17461
CVE-2017-17460
RESERVED
CVE-2018-1340 (Prior to 1.0.0, Apache Guacamole used a cookie for client-side
storage ...)
- - guacamole-client <unfixed> (bug #920796)
+ - guacamole-client <removed> (bug #920796)
[stretch] - guacamole-client <no-dsa> (Minor issue)
[jessie] - guacamole-client <not-affected> (Vulnerable code not present)
- guacamole <removed>
@@ -391334,7 +391334,7 @@ CVE-2017-3160 (After the Android platform is added to
Cordova the first time, or
CVE-2017-3159 (Apache Camel's camel-snakeyaml component is vulnerable to Java
object ...)
NOT-FOR-US: Apache Camel
CVE-2017-3158 (A race condition in Guacamole's terminal emulator in versions
0.9.5 th ...)
- - guacamole-client <unfixed> (bug #891798)
+ - guacamole-client <removed> (bug #891798)
[stretch] - guacamole-client <no-dsa> (Minor issue)
[jessie] - guacamole-client <no-dsa> (Minor issue)
- guacamole <removed>
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bac249d493c62ef0eb95010b98c32253426077a6
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bac249d493c62ef0eb95010b98c32253426077a6
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
