[Git][security-tracker-team/security-tracker][master] triage older issues

Fri, 29 Nov 2024 07:49:41 -0800 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
d644f8c3 by Moritz Muehlenhoff at 2024-11-29T16:39:58+01:00
triage older issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -39537,11 +39537,7 @@ CVE-2024-35526 (An issue in Daemon PTY Limited FarCry 
Core framework before 7.2.
 CVE-2024-34581 (The W3C XML Signature Syntax and Processing (XMLDsig) 
specification, s ...)
        NOT-FOR-US: W3C XML Signature Syntax and Processing (XMLDsig) 
specification
 CVE-2024-34580 (Apache XML Security for C++ through 2.0.4 implements the XML 
Signature ...)
-       - xml-security-c <unfixed> (bug #1074429)
-       [bullseye] - xml-security-c <postponed> (Minor issue)
-       NOTE: 
https://cloud.google.com/blog/topics/threat-intelligence/apache-library-allows-server-side-request-forgery
-       NOTE: 
https://www.sonatype.com/blog/the-exploited-ivanti-connect-ssrf-vulnerability-stems-from-xmltooling-oss-library
-       NOTE: 
https://github.com/zmanion/Vulnerabilities/blob/main/CVE-2024-21893.md
+       NOTE: Non issue, rationale explained in more detail at #1074429
 CVE-2024-34400 (An issue was discovered in VirtoSoftware Virto Kanban Board 
Web Part b ...)
        NOT-FOR-US: VirtoSoftware Virto Kanban Board
 CVE-2024-30931 (Stored Cross Site Scripting vulnerability in Emby Media Server 
Emby Me ...)
@@ -263338,7 +263334,7 @@ CVE-2021-37746 (textview_uri_security_check in 
textview.c in Claws Mail before 3
        [buster] - claws-mail <no-dsa> (Minor issue)
        [stretch] - claws-mail <no-dsa> (Minor issue)
        - sylpheed <unfixed> (bug #991723)
-       [bookworm] - sylpheed <no-dsa> (Minor issue)
+       [bookworm] - sylpheed <postponed> (Minor issue, revisit when fixed 
upstream)
        [bullseye] - sylpheed <no-dsa> (Minor issue)
        [buster] - sylpheed <no-dsa> (Minor issue)
        [stretch] - sylpheed <no-dsa> (Minor issue)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d644f8c3f52b30da8096c6290143f12ca4f06c7d

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d644f8c3f52b30da8096c6290143f12ca4f06c7d
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to