[Git][security-tracker-team/security-tracker][master] new newlib issue

Moritz Muehlenhoff (@jmm) Wed, 21 Aug 2024 00:19:47 -0700


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
91e199fd by Moritz Muehlenhoff at 2024-08-21T09:16:26+02:00
new newlib issue

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -273,7 +273,9 @@ CVE-2024-33872 (Keyfactor Command 10.5.x before 10.5.1 and 
11.5.x before 11.5.1
 CVE-2024-31842 (An issue was discovered in Italtel Embrace 1.6.4. The web 
application  ...)
        TODO: check
 CVE-2024-30949 (An issue in newlib v.4.3.0 allows an attacker to execute 
arbitrary cod ...)
-       TODO: check
+       - newlib 4.4.0.20231231-2 (unimportant)
+       NOTE: 
https://sourceware.org/git/?p=newlib-cygwin.git;a=commit;h=5f15d7c5817b07a6b18cbab17342c95cb7b42be4
 (cygwin-3.5.0)
+       NOTE: Only affects riscv, which is still WIP
 CVE-2024-28829 (Least privilege violation and reliance on untrusted inputs in 
the mk_i ...)
        TODO: check
 CVE-2024-27187 (Improper Access Controls allows backend users to overwrite 
their usern ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/91e199fd973dcb23a5851e5debdcd259b868fb8d

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/91e199fd973dcb23a5851e5debdcd259b868fb8d
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] new newlib issue

Reply via email to