Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
8b0af805 by Moritz Muehlenhoff at 2024-06-09T18:41:10+02:00
libreswan EOLed for bullseye
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -20371,6 +20371,7 @@ CVE-2023-6678 (An issue has been discovered in GitLab
EE affecting all versions
- gitlab <unfixed>
CVE-2024-3652 (The Libreswan Project was notified of an issue causing
libreswan to re ...)
- libreswan <unfixed> (bug #1069194)
+ [bullseye] - libreswan <end-of-life> (see #1072527)
NOTE: https://github.com/libreswan/libreswan/issues/1665
NOTE: Fixed by:
https://github.com/libreswan/libreswan/commit/03caa63de1e34c29dd3e7e835070d363ca197bfd
NOTE: Patch:
https://libreswan.org/security/CVE-2024-3652/CVE-2024-3652.patch
@@ -30400,7 +30401,7 @@ CVE-2024-2370
CVE-2024-2357 (The Libreswan Project was notified of an issue causing
libreswan to re ...)
- libreswan 4.14-1 (bug #1066059)
[bookworm] - libreswan <no-dsa> (Minor issue)
- [bullseye] - libreswan <no-dsa> (Minor issue)
+ [bullseye] - libreswan <end-of-life> (see #1072527)
NOTE: https://libreswan.org/security/CVE-2024-2357/CVE-2024-2357.patch
NOTE: https://libreswan.org/security/CVE-2024-2357/CVE-2024-2357.txt
NOTE: https://github.com/libreswan/libreswan/issues/1609
@@ -69808,6 +69809,7 @@ CVE-2023-32002 (The use of `Module._load()` can bypass
the policy mechanism and
NOTE:
https://github.com/nodejs/node/commit/b68e5e798138be0041ba9ace72d8d45e63c068a1
(main)
CVE-2023-38712 (An issue was discovered in Libreswan 3.x and 4.x before 4.12.
When an ...)
- libreswan 4.12-1
+ [bullseye] - libreswan <end-of-life> (see #1072527)
NOTE: https://libreswan.org/security/CVE-2023-38712/CVE-2023-38712.txt
NOTE: https://libreswan.org/security/CVE-2023-38712/CVE-2023-38712.patch
CVE-2023-38711 (An issue was discovered in Libreswan before 4.12. When an
IKEv1 Quick ...)
@@ -69818,6 +69820,7 @@ CVE-2023-38711 (An issue was discovered in Libreswan
before 4.12. When an IKEv1
NOTE: https://libreswan.org/security/CVE-2023-38711/CVE-2023-38711.patch
CVE-2023-38710 (An issue was discovered in Libreswan before 4.12. When an
IKEv2 Child ...)
- libreswan 4.12-1
+ [bullseye] - libreswan <end-of-life> (see #1072527)
NOTE: https://libreswan.org/security/CVE-2023-38710/CVE-2023-38710.txt
NOTE: https://libreswan.org/security/CVE-2023-38710/CVE-2023-38710.patch
CVE-2023-4273 (A flaw was found in the exFAT driver of the Linux kernel. The
vulnerab ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8b0af8059da44dbcdf0932b557199e95a42f66de
--
This project does not include diff previews in email notifications.
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8b0af8059da44dbcdf0932b557199e95a42f66de
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
