[Git][security-tracker-team/security-tracker][master] Update status for CVE-2024-26256

Tue, 28 May 2024 04:54:32 -0700 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
f3ebbec8 by Salvatore Bonaccorso at 2024-05-28T13:53:57+02:00
Update status for CVE-2024-26256

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -18663,11 +18663,12 @@ CVE-2024-26257 (Microsoft Excel Remote Code Execution 
Vulnerability)
        NOT-FOR-US: Microsoft
 CVE-2024-26256 (libarchive Remote Code Execution Vulnerability)
        - libarchive <unfixed>
+       [bullseye] - libarchive  <not-affected> (Vulnerable code introduced in 
3.6.0)
        [buster] - libarchive <not-affected> (Vulnerable code introduced in 
3.6.0)
        NOTE: https://github.com/advisories/GHSA-2jc9-36w4-pmqw
        NOTE: https://github.com/libarchive/libarchive/pull/2135
-       NOTE: 
https://github.com/libarchive/libarchive/commit/eb7939b24a681a04648a59cdebd386b1e9dc9237
 (v3.7.4)
-       NOTE: Introduced by: 
https://github.com/libarchive/libarchive/commit/01a2d329dfc71741892e2b590cf9fb25092474a0
 (v.3.6.0)
+       NOTE: Introduced by: 
https://github.com/libarchive/libarchive/commit/01a2d329dfc71741892e2b590cf9fb25092474a0
 (v3.6.0)
+       NOTE: Fixed by: 
https://github.com/libarchive/libarchive/commit/eb7939b24a681a04648a59cdebd386b1e9dc9237
 (v3.7.4)
 CVE-2024-26255 (Windows Remote Access Connection Manager Information 
Disclosure Vulner ...)
        NOT-FOR-US: Microsoft
 CVE-2024-26254 (Microsoft Virtual Machine Bus (VMBus) Denial of Service 
Vulnerability)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f3ebbec843fca5002baa00adef95fd36afacb9e0

-- 
This project does not include diff previews in email notifications.
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f3ebbec843fca5002baa00adef95fd36afacb9e0
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to