[Git][security-tracker-team/security-tracker][master] Add upstream tag information for dwarfutils issues

Mon, 22 Apr 2024 00:46:24 -0700 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
2bf91b9e by Salvatore Bonaccorso at 2024-04-22T09:45:24+02:00
Add upstream tag information for dwarfutils issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -122,7 +122,7 @@ CVE-2024-31745 (Libdwarf v0.9.1 was discovered to contain a 
heap use-after-free
        [bookworm] - dwarfutils <no-dsa> (Minor issue)
        [bullseye] - dwarfutils <no-dsa> (Minor issue)
        [buster] - dwarfutils <no-dsa> (Minor issue)
-       NOTE: 
https://github.com/davea42/libdwarf-code/commit/404e6b1b14f60c81388d50b4239f81d461b3c3ad
 (
+       NOTE: 
https://github.com/davea42/libdwarf-code/commit/404e6b1b14f60c81388d50b4239f81d461b3c3ad
 (v0.9.2)
        NOTE: https://github.com/davea42/libdwarf-code/issues/238
        NOTE: https://www.prevanders.net/dwarfbug.html#DW202402-002
        NOTE: Duplicate of CVE-2024-2002, MITRE CNA notified
@@ -14247,7 +14247,7 @@ CVE-2024-2002 (A double-free vulnerability was found in 
libdwarf. In a multiply-
        [bullseye] - dwarfutils <no-dsa> (Minor issue)
        [buster] - dwarfutils <no-dsa> (Minor issue)
        NOTE: https://www.prevanders.net/dwarfbug.html#DW202402-002
-       NOTE: Fixed by: 
https://github.com/davea42/libdwarf-code/commit/404e6b1b14f60c81388d50b4239f81d461b3c3ad
+       NOTE: Fixed by: 
https://github.com/davea42/libdwarf-code/commit/404e6b1b14f60c81388d50b4239f81d461b3c3ad
 (v0.9.2)
 CVE-2024-27351 (In Django 3.2 before 3.2.25, 4.2 before 4.2.11, and 5.0 before 
5.0.3,  ...)
        - python-django 3:4.2.11-1
        [bookworm] - python-django <postponed> (Minor issue, fix along in 
future update)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2bf91b9e6fc4e0cc8e5d132547bed18943f4edbc

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2bf91b9e6fc4e0cc8e5d132547bed18943f4edbc
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to