Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 9238c678 by Salvatore Bonaccorso at 2024-04-18T23:54:43+02:00 Track proposed update for libapache2-mod-auth-openidc via {bullseye,bookworm}-pu - - - - - 3 changed files: - data/CVE/list - data/next-oldstable-point-update.txt - data/next-point-update.txt Changes: ===================================== data/CVE/list ===================================== @@ -19255,6 +19255,8 @@ CVE-2024-24920 (A vulnerability has been identified in Simcenter Femap (All vers CVE-2024-24814 (mod_auth_openidc is an OpenID Certified\u2122 authentication and autho ...) {DLA-3751-1} - libapache2-mod-auth-openidc 2.4.15.7-1 (bug #1064183) + [bookworm] - libapache2-mod-auth-openidc <no-dsa> (Minor issue) + [bullseye] - libapache2-mod-auth-openidc <no-dsa> (Minor issue) NOTE: https://github.com/OpenIDC/mod_auth_openidc/security/advisories/GHSA-hxr6-w4gc-7vvv NOTE: https://github.com/OpenIDC/mod_auth_openidc/commit/4022c12f314bd89d127d1be008b1a80a08e1203d (v2.4.15.2) CVE-2024-24782 (An unauthenticated attacker can send a ping request from one network t ...) ===================================== data/next-oldstable-point-update.txt ===================================== @@ -85,3 +85,5 @@ CVE-2023-1370 [bullseye] - json-smart 2.2-2+deb11u1 CVE-2024-2398 [bullseye] - curl 7.74.0-1.3+deb11u12 +CVE-2024-24814 + [bullseye] - libapache2-mod-auth-openidc 2.4.9.4-0+deb11u4 ===================================== data/next-point-update.txt ===================================== @@ -110,3 +110,5 @@ CVE-2023-1370 [bookworm] - json-smart 2.2-2+deb12u1 CVE-2024-23944 [bookworm] - zookeeper 3.8.0-11+deb12u2 +CVE-2024-24814: + [bookworm] - libapache2-mod-auth-openidc 2.4.12.3-2+deb12u1 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9238c678df8a8ee199c43ce7be8c44fd475ad3ef -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9238c678df8a8ee199c43ce7be8c44fd475ad3ef You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits