[Git][security-tracker-team/security-tracker][master] triage older issues

Moritz Muehlenhoff (@jmm) Wed, 20 Nov 2024 00:11:36 -0800


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
f5f3dbd1 by Moritz Muehlenhoff at 2024-11-20T09:11:09+01:00
triage older issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -53699,7 +53699,7 @@ CVE-2023-6327 (The ShopLentor (formerly WooLentor) 
plugin for WordPress is vulne
        NOT-FOR-US: WordPress plugin
 CVE-2024-33655 (The DNS protocol in RFC 1035 and updates allows remote 
attackers to ca ...)
        - unbound 1.20.0-1
-       [bookworm] - unbound <no-dsa> (Minor issue)
+       [bookworm] - unbound <ignored> (Minor issue, too intrusive to backport)
        [bullseye] - unbound <no-dsa> (Minor issue)
        [buster] - unbound <ignored> (Not affected by DoS, intrusive changes)
        NOTE: https://nlnetlabs.nl/downloads/unbound/CVE-2024-33655.txt
@@ -133675,13 +133675,13 @@ CVE-2023-28373 (A flaw exists in FlashArray Purity 
whereby an array administrato
 CVE-2023-28372 (A flaw exists in FlashBlade Purity (OE) Version 4.1.0 whereby 
a user w ...)
        NOT-FOR-US: FlashBlade Purity
 CVE-2023-28371 (In Stellarium through 1.2, attackers can write to files that 
are typic ...)
-       - stellarium <unfixed> (bug #1034183)
-       [bookworm] - stellarium <no-dsa> (Minor issue)
+       - stellarium 23.3-1 (bug #1034183)
+       [bookworm] - stellarium <ignored> (Minor issue)
        [bullseye] - stellarium <no-dsa> (Minor issue)
        [buster] - stellarium <no-dsa> (Minor issue)
-       NOTE: 
https://github.com/Stellarium/stellarium/commit/1261f74dc4aa6bbd01ab514343424097f8cf46b7
-       NOTE: 
https://github.com/Stellarium/stellarium/commit/787a894897b7872ae96e6f5804a182210edd5c78
-       NOTE: 
https://github.com/Stellarium/stellarium/commit/eba61df3b38605befcb43687a4c0a159dbc0c5cb
+       NOTE: 
https://github.com/Stellarium/stellarium/commit/1261f74dc4aa6bbd01ab514343424097f8cf46b7
 (v23.1)
+       NOTE: 
https://github.com/Stellarium/stellarium/commit/787a894897b7872ae96e6f5804a182210edd5c78
 (v23.1)
+       NOTE: 
https://github.com/Stellarium/stellarium/commit/eba61df3b38605befcb43687a4c0a159dbc0c5cb
 (v23.1)
 CVE-2023-28368 (TP-Link L2 switch T2600G-28SQ firmware versions prior to 
'T2600G-28SQ( ...)
        NOT-FOR-US: TP-Link
 CVE-2023-28366 (The broker in Eclipse Mosquitto 1.3.2 through 2.x before 
2.0.16 has a  ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f5f3dbd193cab99e6208497dbf2755128782e875

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f5f3dbd193cab99e6208497dbf2755128782e875
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] triage older issues

Reply via email to