[Git][security-tracker-team/security-tracker][master] fastdds DSA
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Sun Aug 20 18:30:33 BST 2023
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
7b85cece by Moritz Mühlenhoff at 2023-08-20T19:29:46+02:00
fastdds DSA
- - - - -
3 changed files:
- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -820,13 +820,11 @@ CVE-2023-3864 (Blind SQL injection in a service running in Snow Software license
NOT-FOR-US: Snow Software
CVE-2023-39949 (eprosima Fast DDS is a C++ implementation of the Data Distribution Ser ...)
- fastdds 2.9.1+ds-1
- [bullseye] - fastdds <no-dsa> (Minor issue)
+ [bullseye] - fastdds 2.1.0+ds-9+deb11u1
NOTE: https://github.com/eProsima/Fast-DDS/security/advisories/GHSA-3jv9-j9x3-95cg
NOTE: https://github.com/eProsima/Fast-DDS/issues/3236
CVE-2023-39948 (eprosima Fast DDS is a C++ implementation of the Data Distribution Ser ...)
- fastdds 2.10.1+ds-2
- [bookworm] - fastdds <no-dsa> (Minor issue)
- [bullseye] - fastdds <no-dsa> (Minor issue)
NOTE: https://github.com/eProsima/Fast-DDS/security/advisories/GHSA-x9pj-vrgf-f68f
NOTE: https://github.com/eProsima/Fast-DDS/issues/3422
NOTE: https://github.com/eProsima/Fast-DDS/commit/d3db7244df4081ae630dea98b7b27eb96245d562
=====================================
data/DSA/list
=====================================
@@ -1,3 +1,7 @@
+[20 Aug 2023] DSA-5481-1 fastdds - security update
+ {CVE-2023-39534 CVE-2023-39945 CVE-2023-39946 CVE-2023-39947 CVE-2023-39948 CVE-2023-39949}
+ [bullseye] - fastdds 2.1.0+ds-9+deb11u1
+ [bookworm] - fastdds 2.9.1+ds-1+deb12u1
[18 Aug 2023] DSA-5480-1 linux - security update
{CVE-2022-4269 CVE-2022-39189 CVE-2023-1206 CVE-2023-1380 CVE-2023-2002 CVE-2023-2007 CVE-2023-2124 CVE-2023-2269 CVE-2023-2898 CVE-2023-3090 CVE-2023-3111 CVE-2023-3212 CVE-2023-3268 CVE-2023-3338 CVE-2023-3389 CVE-2023-3609 CVE-2023-3611 CVE-2023-3776 CVE-2023-3863 CVE-2023-4004 CVE-2023-4128 CVE-2023-4132 CVE-2023-4147 CVE-2023-4194 CVE-2023-4273 CVE-2023-20588 CVE-2023-21255 CVE-2023-21400 CVE-2023-31084 CVE-2023-34319 CVE-2023-35788 CVE-2023-40283}
[bullseye] - linux 5.10.191-1
=====================================
data/dsa-needed.txt
=====================================
@@ -16,8 +16,6 @@ aom/oldstable
--
cinder/oldstable
--
-fastdds
---
frr (aron)
maintainer proposed to update to 8.4.4 for bookworm, which might be a good idea
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7b85cece1e2eabc172d8cbfd03ef55bbe4d07851
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7b85cece1e2eabc172d8cbfd03ef55bbe4d07851
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230820/7fdfd920/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list