Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
baf406aa by Salvatore Bonaccorso at 2024-03-21T09:39:12+01:00
Add CVE-2024-2883{4,5}/gnutls28
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -53,7 +53,17 @@ CVE-2024-29018 (Moby is an open source container framework
that is a key compone
CVE-2024-28916 (Xbox Gaming Services Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
CVE-2024-28835 (A flaw has been discovered in GnuTLS where an application
crash can be ...)
- TODO: check
+ - gnutls28 <unfixed>
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2269084
+ NOTE: https://gitlab.com/gnutls/gnutls/-/issues/1525
+ NOTE: https://gitlab.com/gnutls/gnutls/-/issues/1527
+ NOTE:
https://lists.gnupg.org/pipermail/gnutls-help/2024-March/004845.html
+ NOTE: https://www.gnutls.org/security-new.html#GNUTLS-SA-2024-01-23
+CVE-2024-28834
+ - gnutls28 <unfixed>
+ NOTE: https://gitlab.com/gnutls/gnutls/-/issues/1516
+ NOTE:
https://lists.gnupg.org/pipermail/gnutls-help/2024-March/004845.html
+ NOTE: https://www.gnutls.org/security-new.html#GNUTLS-SA-2023-12-04
CVE-2024-28635 (Cross Site Scripting (XSS) vulnerability in SurveyJS Survey
Creator v. ...)
NOT-FOR-US: SurveyJS Survey Creator
CVE-2024-25294 (An SSRF issue in REBUILD v.3.5 allows a remote attacker to
obtain sens ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/baf406aa5f8a6a3a31cfb5d832f77ce2f58791ae
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/baf406aa5f8a6a3a31cfb5d832f77ce2f58791ae
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
