Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ebf149a1 by Moritz Muehlenhoff at 2024-11-15T11:34:51+01:00
triage older issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -72723,7 +72723,7 @@ CVE-2024-1979 (A vulnerability was found in Quarkus. In
certain conditions relat
NOT-FOR-US: Quarkus
CVE-2023-5685 (A flaw was found in XNIO. The XNIO NotifierState that can cause
a Stac ...)
- jboss-xnio <unfixed> (bug #1065847)
- [bookworm] - jboss-xnio <no-dsa> (Minor issue)
+ [bookworm] - jboss-xnio <ignored> (Minor issue)
[bullseye] - jboss-xnio <no-dsa> (Minor issue)
[buster] - jboss-xnio <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2241822
@@ -86675,7 +86675,7 @@ CVE-2023-41782 (There is a DLL hijacking vulnerability
in ZTE ZXCLOUD iRAI, an a
NOT-FOR-US: ZTE
CVE-2024-22051 (CommonMarker versions prior to 0.23.4 are at risk of an
integer overfl ...)
- ruby-commonmarker 0.23.4-1
- [bullseye] - ruby-commonmarker <no-dsa> (Minor issue)
+ [bullseye] - ruby-commonmarker <ignored> (Minor issue)
[buster] - ruby-commonmarker <no-dsa> (Minor issue)
NOTE:
https://github.com/github/cmark-gfm/security/advisories/GHSA-mc3g-88wq-6f4x
NOTE:
https://github.com/gjtorikian/commonmarker/security/advisories/GHSA-fmx4-26r3-wxpf
@@ -114678,7 +114678,7 @@ CVE-2023-37463 (cmark-gfm is an extended version of
the C reference implementati
[bullseye] - r-cran-commonmark <no-dsa> (Minor issue)
[buster] - r-cran-commonmark <no-dsa> (Minor issue)
- ruby-commonmarker <unfixed> (bug #1041100)
- [bookworm] - ruby-commonmarker <no-dsa> (Minor issue)
+ [bookworm] - ruby-commonmarker <ignored> (Minor issue)
[bullseye] - ruby-commonmarker <no-dsa> (Minor issue)
[buster] - ruby-commonmarker <no-dsa> (Minor issue)
NOTE:
https://github.com/github/cmark-gfm/security/advisories/GHSA-w4qg-3vf7-m9x5
@@ -122035,7 +122035,7 @@ CVE-2023-32573 (In Qt before 5.15.14, 6.0.x through
6.2.x before 6.2.9, and 6.3.
CVE-2023-32570 (VideoLAN dav1d before 1.2.0 has a thread_task.c race condition
that ca ...)
[experimental] - dav1d 1.2.0-1
- dav1d 1.2.1-2 (bug #1035950)
- [bookworm] - dav1d <no-dsa> (Minor issue)
+ [bookworm] - dav1d <ignored> (Minor issue)
[bullseye] - dav1d <no-dsa> (Minor issue)
NOTE:
https://code.videolan.org/videolan/dav1d/-/commit/cf617fdae0b9bfabd27282854c8e81450d955efa
(1.2.0)
CVE-2023-32569 (An issue was discovered in Veritas InfoScale Operations
Manager (VIOM) ...)
@@ -137437,7 +137437,7 @@ CVE-2023-26485 (cmark-gfm is GitHub's fork of cmark,
a CommonMark parsing and re
[bullseye] - r-cran-commonmark <no-dsa> (Minor issue)
[buster] - r-cran-commonmark <no-dsa> (Minor issue)
- ruby-commonmarker <unfixed> (bug #1034174)
- [bookworm] - ruby-commonmarker <no-dsa> (Minor issue)
+ [bookworm] - ruby-commonmarker <ignored> (Minor issue)
[bullseye] - ruby-commonmarker <no-dsa> (Minor issue)
[buster] - ruby-commonmarker <no-dsa> (Minor issue)
NOTE:
https://github.com/github/cmark-gfm/security/advisories/GHSA-r8vr-c48j-fcc5
@@ -142631,7 +142631,7 @@ CVE-2023-24824 (cmark-gfm is GitHub's fork of cmark,
a CommonMark parsing and re
[bullseye] - r-cran-commonmark <no-dsa> (Minor issue)
[buster] - r-cran-commonmark <no-dsa> (Minor issue)
- ruby-commonmarker <unfixed> (bug #1034174)
- [bookworm] - ruby-commonmarker <no-dsa> (Minor issue)
+ [bookworm] - ruby-commonmarker <ignored> (Minor issue)
[bullseye] - ruby-commonmarker <no-dsa> (Minor issue)
[buster] - ruby-commonmarker <no-dsa> (Minor issue)
NOTE:
https://github.com/github/cmark-gfm/security/advisories/GHSA-66g8-4hjf-77xh
@@ -150347,7 +150347,7 @@ CVE-2023-22486 (cmark-gfm is GitHub's fork of cmark,
a CommonMark parsing and re
[bullseye] - r-cran-commonmark <no-dsa> (Minor issue)
[buster] - r-cran-commonmark <no-dsa> (Minor issue)
- ruby-commonmarker <unfixed> (bug #1033113)
- [bookworm] - ruby-commonmarker <no-dsa> (Minor issue)
+ [bookworm] - ruby-commonmarker <ignored> (Minor issue)
[bullseye] - ruby-commonmarker <no-dsa> (Minor issue)
[buster] - ruby-commonmarker <no-dsa> (Minor issue)
NOTE:
https://github.com/github/cmark-gfm/security/advisories/GHSA-r572-jvj2-3m8p
@@ -150388,7 +150388,7 @@ CVE-2023-22484 (cmark-gfm is GitHub's fork of cmark,
a CommonMark parsing and re
[bullseye] - r-cran-commonmark <no-dsa> (Minor issue)
[buster] - r-cran-commonmark <no-dsa> (Minor issue)
- ruby-commonmarker <unfixed> (bug #1033113)
- [bookworm] - ruby-commonmarker <no-dsa> (Minor issue)
+ [bookworm] - ruby-commonmarker <ignored> (Minor issue)
[bullseye] - ruby-commonmarker <no-dsa> (Minor issue)
[buster] - ruby-commonmarker <no-dsa> (Minor issue)
NOTE:
https://github.com/github/cmark-gfm/security/advisories/GHSA-24f7-9frr-5h2r
@@ -150408,7 +150408,7 @@ CVE-2023-22483 (cmark-gfm is GitHub's fork of cmark,
a CommonMark parsing and re
[bullseye] - r-cran-commonmark <no-dsa> (Minor issue)
[buster] - r-cran-commonmark <no-dsa> (Minor issue)
- ruby-commonmarker <unfixed> (bug #1033113)
- [bookworm] - ruby-commonmarker <no-dsa> (Minor issue)
+ [bookworm] - ruby-commonmarker <ignored> (Minor issue)
[bullseye] - ruby-commonmarker <no-dsa> (Minor issue)
[buster] - ruby-commonmarker <no-dsa> (Minor issue)
NOTE:
https://github.com/github/cmark-gfm/security/advisories/GHSA-29g3-96g3-jg6c
@@ -180593,7 +180593,7 @@ CVE-2022-39209 (cmark-gfm is GitHub's fork of cmark,
a CommonMark parsing and re
[buster] - python-cmarkgfm <no-dsa> (Minor issue)
- ghostwriter 2.1.6+ds-1 (unimportant)
- ruby-commonmarker <unfixed> (bug #1034888)
- [bookworm] - ruby-commonmarker <no-dsa> (Minor issue)
+ [bookworm] - ruby-commonmarker <ignored> (Minor issue)
[bullseye] - ruby-commonmarker <no-dsa> (Minor issue)
[buster] - ruby-commonmarker <no-dsa> (Minor issue)
- r-cran-commonmark 1.8.1-1
@@ -312542,7 +312542,7 @@ CVE-2020-28492
REJECTED
CVE-2020-28491 (This affects the package
com.fasterxml.jackson.dataformat:jackson-data ...)
- jackson-dataformat-cbor <unfixed> (bug #983664)
- [bookworm] - jackson-dataformat-cbor <no-dsa> (Minor issue)
+ [bookworm] - jackson-dataformat-cbor <ignored> (Minor issue)
[bullseye] - jackson-dataformat-cbor <no-dsa> (Minor issue)
[buster] - jackson-dataformat-cbor <no-dsa> (Minor issue)
[stretch] - jackson-dataformat-cbor <no-dsa> (Minor issue;
https://people.debian.org/~abhijith/CVE-2020-28491.txt)
@@ -324963,7 +324963,7 @@ CVE-2020-24393 (TweetStream 2.6.1 uses the library
eventmachine in an insecure w
NOT-FOR-US: TweetStream
CVE-2020-24392 (In voloko twitter-stream 0.1.10, missing TLS hostname
validation allow ...)
- ruby-twitter-stream <unfixed> (bug #988733)
- [bookworm] - ruby-twitter-stream <no-dsa> (Minor issue)
+ [bookworm] - ruby-twitter-stream <ignored> (Minor issue)
[bullseye] - ruby-twitter-stream <no-dsa> (Minor issue)
[buster] - ruby-twitter-stream <no-dsa> (Minor issue)
[stretch] - ruby-twitter-stream <no-dsa> (Minor issue)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ebf149a1325dd1970b7abad048747e9a754e43da
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ebf149a1325dd1970b7abad048747e9a754e43da
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
