[Git][security-tracker-team/security-tracker][master] bugnums

Mon, 15 Jan 2024 11:54:51 -0800 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
a46de165 by Moritz Muehlenhoff at 2024-01-15T20:54:12+01:00
bugnums

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -8,7 +8,7 @@ CVE-2023-6237 [openssl: Checking excessively long invalid RSA 
public keys may ta
        NOTE: 
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=a830f551557d3d66a84bbb18a5b889c640c36294
 (openssl-3.1)
        NOTE: 
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=18c02492138d1eb8b6548cb26e7b625fb2414a2a
 (openssl-3.0)
 CVE-2024-XXXX [RUSTSEC-2023-0078]
-       - rust-tracing <unfixed>
+       - rust-tracing <unfixed> (bug #1060861)
        [bookworm] - rust-tracing <not-affected> (Vulnerable code not present)
        NOTE: https://rustsec.org/advisories/RUSTSEC-2023-0078.html
        NOTE: https://github.com/tokio-rs/tracing/pull/2765
@@ -2487,7 +2487,7 @@ CVE-2023-6436 (Improper Neutralization of Special 
Elements used in an SQL Comman
 CVE-2023-51652 (OWASP AntiSamy .NET is a library for performing cleansing of 
HTML comi ...)
        NOT-FOR-US: OWASP AntiSamy .NET library
 CVE-2023-50711 (vmm-sys-util is a collection of modules that provides helpers 
and util ...)
-       - rust-vmm-sys-util <unfixed>
+       - rust-vmm-sys-util <unfixed> (bug #1060860)
        NOTE: https://rustsec.org/advisories/RUSTSEC-2024-0002.html
        NOTE: https://github.com/advisories/GHSA-875g-mfp6-g7f9
        NOTE: 
https://github.com/rust-vmm/vmm-sys-util/commit/30172fca2a8e0a38667d934ee56682247e13f167
 (v0.12.1)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a46de165aa55c1f7666a5711fb56e620f15b330b

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a46de165aa55c1f7666a5711fb56e620f15b330b
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to