Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
04d7e362 by Moritz Muehlenhoff at 2024-09-29T11:43:53+02:00
nghttp2 spu
- - - - -
2 changed files:
- data/CVE/list
- data/next-point-update.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -50464,6 +50464,7 @@ CVE-2024-30255 (Envoy is a cloud-native, open source
edge and service proxy. The
CVE-2024-28182 (nghttp2 is an implementation of the Hypertext Transfer
Protocol versio ...)
{DLA-3898-1 DLA-3804-1}
- nghttp2 1.61.0-1 (bug #1068415)
+ [bookworm] - nghttp2 <no-dsa> (Minor issue)
NOTE:
https://github.com/nghttp2/nghttp2/security/advisories/GHSA-x6x3-gv8h-m57q
NOTE: https://www.kb.cert.org/vuls/id/421644
NOTE:
https://github.com/nghttp2/nghttp2/commit/00201ecd8f982da3b67d4f6868af72a1b03b14e0
(v1.61.0)
=====================================
data/next-point-update.txt
=====================================
@@ -82,3 +82,5 @@ CVE-2023-50868
[bookworm] - dnsmasq 2.90-4~deb12u1
CVE-2023-47480
[bookworm] - puredata 0.53.1+ds-2+deb12u1
+CVE-2024-28182
+ [bookworm] - nghttp2 1.52.0-1+deb12u2
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/04d7e362c74b85e4ecf93cba5cb52e11e9ccdd03
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/04d7e362c74b85e4ecf93cba5cb52e11e9ccdd03
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
