[Git][security-tracker-team/security-tracker][master] mark mbedtls as unimportant

Moritz Muehlenhoff (@jmm) Wed, 02 Oct 2024 14:45:58 -0700


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
ac6a70e3 by Moritz Muehlenhoff at 2024-10-02T23:45:29+02:00
mark mbedtls as unimportant

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5420,9 +5420,8 @@ CVE-2024-45158 (An issue was discovered in Mbed TLS 3.6 
before 3.6.1. A stack bu
        - mbedtls <not-affected> (Vulnerable code introduced later)
        NOTE: 
https://mbed-tls.readthedocs.io/en/latest/security-advisories/mbedtls-security-advisory-2024-08-2/
 CVE-2024-45157 (An issue was discovered in Mbed TLS before 2.28.9 and 3.x 
before 3.6.1 ...)
-       - mbedtls <unfixed>
-       [bookworm] - mbedtls <no-dsa> (Minor issue)
-       [bullseye] - mbedtls <not-affected> (Vulnerable code introduced in 
2.26.0)
+       - mbedtls <unfixed> (unimportant)
+       NOTE: No code fix, not a documentation change
        NOTE: 
https://mbed-tls.readthedocs.io/en/latest/security-advisories/mbedtls-security-advisory-2024-08-1/
 CVE-2024-45107 (Acrobat Reader versions 20.005.30636, 24.002.20964, 
24.001.30123, 24.0 ...)
        NOT-FOR-US: Adobe



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ac6a70e37c559981a4ae1958e5539a11b9a2a082

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ac6a70e37c559981a4ae1958e5539a11b9a2a082
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] mark mbedtls as unimportant

Reply via email to