Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
b177e569 by Salvatore Bonaccorso at 2025-05-07T20:23:39+02:00
Update status for CVE-2024-2467
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -125939,12 +125939,12 @@ CVE-2024-1857 (The Ultimate Gift Cards for
WooCommerce \u2013 Create, Redeem & M
NOT-FOR-US: WooCommerce plugin
CVE-2024-2467 (A timing-based side-channel flaw exists in the
perl-Crypt-OpenSSL-RSA ...)
- libcrypt-openssl-rsa-perl <unfixed> (bug #1066969)
- [trixie] - libcrypt-openssl-rsa-perl <postponed> (Minor issue, revisit
when fixed upstream)
[bookworm] - libcrypt-openssl-rsa-perl <postponed> (Minor issue,
revisit when fixed upstream)
[bullseye] - libcrypt-openssl-rsa-perl <no-dsa> (Minor issue)
[buster] - libcrypt-openssl-rsa-perl <postponed> (Minor issue;
side-channel timing attack)
NOTE: https://people.redhat.com/~hkario/marvin/
NOTE: https://github.com/toddr/Crypt-OpenSSL-RSA/issues/42
+ NOTE: Fixed by:
https://github.com/cpan-authors/Crypt-OpenSSL-RSA/commit/f986c31575f41107bfe66610cdf922d6858a36be
(0.35)
CVE-2024-2514 (A vulnerability classified as critical was found in MAGESH-K21
Online- ...)
NOT-FOR-US: MAGESH-K21 Online-College-Event-Hall-Reservation-System
CVE-2024-2308 (The ElementInvader Addons for Elementor plugin for WordPress is
vulner ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b177e5691cacfa975a9d66203abd0199355dfc3f
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b177e5691cacfa975a9d66203abd0199355dfc3f
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
