Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 053fa614 by Salvatore Bonaccorso at 2024-04-27T21:37:28+02:00 Add references for CVE-2024-27280 - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -10689,7 +10689,9 @@ CVE-2024-27280 [Buffer overread vulnerability in StringIO] - ruby2.7 <removed> - ruby2.5 <removed> NOTE: https://www.ruby-lang.org/en/news/2024/03/21/buffer-overread-cve-2024-27280/ - TODO: check details + NOTE: https://github.com/ruby/stringio/commit/a35268a3ac1b5f0058e5b7c1a041a7e86d9da067 (v3.0.3) + NOTE: https://github.com/ruby/stringio/commit/c58c5f54f1eab99665ea6a161d29ff6a7490afc8 (v3.0.1.1) + NOTE: https://github.com/ruby/stringio/commit/0e596524097706263d10900ca180898e4a8f5233 (v3.0.1.2) CVE-2024-30161 (In Qt 6.5.4, 6.5.5, and 6.6.2, QNetworkReply header data might be acce ...) - qt6-base <not-affected> (wasm target not built/buildable with Debian package, see bug #1068454) - qtbase-opensource-src <not-affected> (Only affects Qt6) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/053fa61434917e15d7376775e644562723e15fd0 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/053fa61434917e15d7376775e644562723e15fd0 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits