[Git][security-tracker-team/security-tracker][master] Track proposed update for libapache2-mod-auth-openidc via {bullseye,bookworm}-pu

Salvatore Bonaccorso (@carnil) Thu, 18 Apr 2024 14:56:05 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
9238c678 by Salvatore Bonaccorso at 2024-04-18T23:54:43+02:00
Track proposed update for libapache2-mod-auth-openidc via {bullseye,bookworm}-pu

- - - - -


3 changed files:

- data/CVE/list
- data/next-oldstable-point-update.txt
- data/next-point-update.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -19255,6 +19255,8 @@ CVE-2024-24920 (A vulnerability has been identified in 
Simcenter Femap (All vers
 CVE-2024-24814 (mod_auth_openidc is an OpenID Certified\u2122 authentication 
and autho ...)
        {DLA-3751-1}
        - libapache2-mod-auth-openidc 2.4.15.7-1 (bug #1064183)
+       [bookworm] - libapache2-mod-auth-openidc <no-dsa> (Minor issue)
+       [bullseye] - libapache2-mod-auth-openidc <no-dsa> (Minor issue)
        NOTE: 
https://github.com/OpenIDC/mod_auth_openidc/security/advisories/GHSA-hxr6-w4gc-7vvv
        NOTE: 
https://github.com/OpenIDC/mod_auth_openidc/commit/4022c12f314bd89d127d1be008b1a80a08e1203d
 (v2.4.15.2)
 CVE-2024-24782 (An unauthenticated attacker can send a ping request from one 
network t ...)


=====================================
data/next-oldstable-point-update.txt
=====================================
@@ -85,3 +85,5 @@ CVE-2023-1370
        [bullseye] - json-smart 2.2-2+deb11u1
 CVE-2024-2398
        [bullseye] - curl 7.74.0-1.3+deb11u12
+CVE-2024-24814
+       [bullseye] - libapache2-mod-auth-openidc 2.4.9.4-0+deb11u4


=====================================
data/next-point-update.txt
=====================================
@@ -110,3 +110,5 @@ CVE-2023-1370
        [bookworm] - json-smart 2.2-2+deb12u1
 CVE-2024-23944
        [bookworm] - zookeeper 3.8.0-11+deb12u2
+CVE-2024-24814:
+       [bookworm] - libapache2-mod-auth-openidc 2.4.12.3-2+deb12u1



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9238c678df8a8ee199c43ce7be8c44fd475ad3ef

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9238c678df8a8ee199c43ce7be8c44fd475ad3ef
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Track proposed update for libapache2-mod-auth-openidc via {bullseye,bookworm}-pu

Reply via email to