Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6da80450 by Sylvain Beucler at 2024-11-19T16:10:35+01:00
dla: add avahi (tidy triage)
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -637,7 +637,7 @@ CVE-2024-48962 (Improper Control of Generation of Code
('Code Injection'), Cross
CVE-2024-52616 [Avahi Wide-Area DNS Predictable Transaction IDs]
- avahi <unfixed>
[bookworm] - avahi <no-dsa> (Minor issue; workarounds/mitigation exist
by setting enable-wide-area=no)
- [bullseye] - avahi <no-dsa> (Minor issue; workarounds/mitigation exist
by setting enable-wide-area=no)
+ [bullseye] - avahi <postponed> (Minor issue; workarounds/mitigation
exist by setting enable-wide-area=no)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2326429
NOTE: https://github.com/avahi/avahi/issues/254
NOTE: https://github.com/avahi/avahi/issues/254#issuecomment-2480519212
@@ -647,7 +647,7 @@ CVE-2024-52616 [Avahi Wide-Area DNS Predictable Transaction
IDs]
CVE-2024-52615 [Avahi Wide-Area DNS Uses Constant Source Port]
- avahi <unfixed>
[bookworm] - avahi <no-dsa> (Minor issue; workarounds/mitigation exist
by setting enable-wide-area=no)
- [bullseye] - avahi <no-dsa> (Minor issue; workarounds/mitigation exist
by setting enable-wide-area=no)
+ [bullseye] - avahi <postponed> (Minor issue; workarounds/mitigation
exist by setting enable-wide-area=no)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2326418
NOTE: https://github.com/avahi/avahi/issues/254
NOTE: https://github.com/avahi/avahi/issues/254#issuecomment-2480519212
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6da80450063815193d141c3695ad1fa5f6eb6b28
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6da80450063815193d141c3695ad1fa5f6eb6b28
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
