[Git][security-tracker-team/security-tracker][master] Add two libpcap issues

Sat, 31 Aug 2024 02:50:50 -0700 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
80047e0c by Salvatore Bonaccorso at 2024-08-31T11:47:32+02:00
Add two libpcap issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -7,7 +7,10 @@ CVE-2024-8346 (A vulnerability classified as critical has been 
found in SourceCo
 CVE-2024-8276 (The WPZOOM Portfolio Lite \u2013 Filterable Portfolio Plugin 
plugin fo ...)
        NOT-FOR-US: WordPress plugin
 CVE-2024-8006 (Remote packet capture support is disabled by default in 
libpcap.  When ...)
-       TODO: check
+       - libpcap <unfixed> (unimportant)
+       NOTE: 
https://github.com/the-tcpdump-group/libpcap/commit/0f8a103469ce87d2b8d68c5130a46ddb7fb5eb29
 (master)
+       NOTE: 
https://github.com/the-tcpdump-group/libpcap/commit/8a633ee5b9ecd9d38a587ac9b204e2380713b0d6
 (libpcap-1.10.5)
+       NOTE: Builts in Debian do not enable remote package capture 
(--enable-remote)
 CVE-2024-7435 (The Attire theme for WordPress is vulnerable to PHP Object 
Injection i ...)
        NOT-FOR-US: WordPress theme
 CVE-2024-6586 (Lightdash version 0.1024.6 allows users with the necessary 
permissions ...)
@@ -33,7 +36,10 @@ CVE-2024-39579 (Dell PowerScale OneFS versions 8.2.2.x 
through 9.8.0.0 contains
 CVE-2024-39578 (Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.1 
contains a UNIX ...)
        TODO: check
 CVE-2023-7256 (In affected libpcap versions during the setup of a remote 
packet captu ...)
-       TODO: check
+       - libpcap <unfixed> (unimportant)
+       NOTE: 
https://github.com/the-tcpdump-group/libpcap/commit/262e4f34979872d822ccedf9f318ed89c4d31c03
 (master)
+       NOTE: 
https://github.com/the-tcpdump-group/libpcap/commit/2aa69b04d8173b18a0e3492e0c8f2f7fabdf642d
 (libpcap-1.10.5)
+       NOTE: Builts in Debian do not enable remote package capture 
(--enable-remote)
 CVE-2024-44945 (In the Linux kernel, the following vulnerability has been 
resolved:  n ...)
        - linux <unfixed>
        [bookworm] - linux <not-affected> (Vulnerable code not present)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/80047e0c20df4e55c8ff771025f498d030943e8b

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/80047e0c20df4e55c8ff771025f498d030943e8b
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to