[Git][security-tracker-team/security-tracker][master] Reserve DSA number for putty update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Dec 24 10:24:33 GMT 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a1aa964c by Salvatore Bonaccorso at 2023-12-24T11:24:02+01:00
Reserve DSA number for putty update
- - - - -
3 changed files:
- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -173390,7 +173390,7 @@ CVE-2021-36368 (An issue was discovered in OpenSSH before 8.9. If a client is us
NOTE: https://docs.ssh-mitm.at/trivialauth.html
CVE-2021-36367 (PuTTY through 0.75 proceeds with establishing an SSH session even if i ...)
- putty 0.75-3 (bug #990901)
- [bullseye] - putty <no-dsa> (Minor issue)
+ [bullseye] - putty 0.74-1+deb11u1
[buster] - putty <no-dsa> (Minor issue)
[stretch] - putty <no-dsa> (Minor issue)
NOTE: https://git.tartarus.org/?p=simon/putty.git;a=commit;h=1dc5659aa62848f0aeb5de7bd3839fecc7debefa
=====================================
data/DSA/list
=====================================
@@ -1,3 +1,7 @@
+[24 Dec 2023] DSA-5588-1 putty - security update
+ {CVE-2023-48795}
+ [bullseye] - putty 0.74-1+deb11u1
+ [bookworm] - putty 0.78-2+deb12u1
[23 Dec 2023] DSA-5587-1 curl - security update
{CVE-2023-46218}
[bullseye] - curl 7.74.0-1.3+deb11u11
=====================================
data/dsa-needed.txt
=====================================
@@ -47,9 +47,6 @@ php-horde-turba/oldstable
--
phppgadmin
--
-putty (carnil)
- maintainer working on updates
---
py7zr/oldstable
--
python3.11/stable (carnil)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a1aa964c47069c46e800a6d52136564a9ed4e82e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a1aa964c47069c46e800a6d52136564a9ed4e82e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231224/15aac67a/attachment.htm>
More information about the debian-security-tracker-commits
mailing list