Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker
Commits: 3ecc7e8a by Thorsten Alteholz at 2023-07-01T19:52:53+02:00 mark CVE-2020-8908 and CVE-2023-2976 as no-dsa for Buster - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -1783,6 +1783,7 @@ CVE-2023-2976 (Use of Java's default temporary directory for file creation in `F - guava-libraries 32.0.1-1 (bug #1038979) [bookworm] - guava-libraries <no-dsa> (Minor issue) [bullseye] - guava-libraries <no-dsa> (Minor issue) + [buster] - guava-libraries <no-dsa> (Minor issue) NOTE: https://github.com/google/guava/releases/tag/v32.0.0 NOTE: https://github.com/google/guava/issues/2575 CVE-2023-35149 (A missing permission check in Jenkins Digital.ai App Management Publis ...) @@ -245076,6 +245077,7 @@ CVE-2020-8908 (A temp directory creation vulnerability exists in all versions of - guava-libraries 32.0.1-1 (bug #1038979) [bookworm] - guava-libraries <no-dsa> (Minor issue) [bullseye] - guava-libraries <no-dsa> (Minor issue) + [buster] - guava-libraries <no-dsa> (Minor issue) NOTE: https://github.com/google/guava/issues/4011 NOTE: https://github.com/google/guava/commit/fec0dbc4634006a6162cfd4d0d09c962073ddf40 NOTE: Issue incompletely fixed: View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3ecc7e8a0e85658c7eebc6bdba005b51bf14f18a -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3ecc7e8a0e85658c7eebc6bdba005b51bf14f18a You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits