Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: dfb16c3f by Salvatore Bonaccorso at 2024-08-31T11:21:48+02:00 Track fixed version for CVE-2024-3209/upx-ucl Upstream consider it as fixed in 4.2.3 upstream, cf. https://github.com/upx/upx/issues/841#issuecomment-2261702795 but does not privide an isolated fix. Go ahead and consider the CVE fixed with the 4.2.4-1 upload. - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -45226,7 +45226,7 @@ CVE-2024-3221 (A vulnerability classified as critical was found in SourceCodeste CVE-2024-3218 (A vulnerability classified as critical has been found in Shibang Commu ...) NOT-FOR-US: Shibang Communications IP Network Intercom Broadcasting System CVE-2024-3209 (A vulnerability was found in UPX up to 4.2.2. It has been rated as cri ...) - - upx-ucl <unfixed> + - upx-ucl 4.2.4-1 NOTE: https://github.com/upx/upx/issues/841 CVE-2024-3207 (A vulnerability was found in ermig1979 Simd up to 6.0.134. It has been ...) NOT-FOR-US: ermig1979 Simd View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dfb16c3fc82c693b8e92c31eb4e352c6a4736134 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dfb16c3fc82c693b8e92c31eb4e352c6a4736134 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
