Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
bad06e9d by Moritz Mühlenhoff at 2023-07-18T20:56:50+02:00
mark nettle as n/a in general
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3018,11 +3018,7 @@ CVE-2023-36663 (it-novum openITCOCKPIT (aka open IT
COCKPIT) 4.6.4 before 4.6.5
CVE-2023-36662 (The TechTime User Management components for Atlassian products
allow s ...)
NOT-FOR-US: Atlassian
CVE-2023-36660 (The OCB feature in libnettle in Nettle 3.9 before 3.9.1 allows
memory ...)
- [experimental] - nettle 3.9.1-1
- - nettle <unfixed>
- [bookworm] - nettle <not-affected> (Vulnerable code not present)
- [bullseye] - nettle <not-affected> (Vulnerable code not present)
- [buster] - nettle <not-affected> (Vulnerable code not present)
+ - nettle <not-affected> (Only affects 3.9.x and experimental is fixed)
NOTE: https://bugzilla.suse.com/show_bug.cgi?id=1212112
NOTE: Introduced with:
https://git.lysator.liu.se/nettle/nettle/-/commit/9cf0e2d2675268a403194d85a78a44e8cbdf562b
(nettle_3.9_release_20230514)
NOTE: Fixed by:
https://git.lysator.liu.se/nettle/nettle/-/commit/867a4548b95705291a3afdd66d76e7f17ba2618f
(nettle_3.9.1_release_20230601)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bad06e9d3444b6e8790631a60bbb96aeb032dcb8
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bad06e9d3444b6e8790631a60bbb96aeb032dcb8
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
