Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: c7890b1e by Salvatore Bonaccorso at 2023-12-24T09:32:37+01:00 Add CVE-2023-51767/openssh - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -1,5 +1,8 @@ CVE-2023-51767 (OpenSSH through 9.6, when common types of DRAM are used, might allow r ...) - TODO: check + - openssh <unfixed> + [bookworm] - openssh <postponed> (Revisit once hardening/mitigation for Rowhammer type of attack exists) + [bullseye] - openssh <postponed> (Revisit once hardening/mitigation for Rowhammer type of attack exists) + NOTE: https://arxiv.org/abs/2309.02545 CVE-2023-51766 (Exim through 4.97 allows SMTP smuggling in certain configurations. Rem ...) - exim4 <unfixed> NOTE: https://sec-consult.com/blog/detail/smtp-smuggling-spoofing-e-mails-worldwide/ View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c7890b1e543d388a128dd2fa0e705ab173e14cae -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c7890b1e543d388a128dd2fa0e705ab173e14cae You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
