[Git][security-tracker-team/security-tracker][master] Update information for CVE-2023-36660/nettle

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Jun 26 09:55:55 BST 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5549ca19 by Salvatore Bonaccorso at 2023-06-26T10:55:26+02:00
Update information for CVE-2023-36660/nettle

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -13,8 +13,12 @@ CVE-2023-36662 (The TechTime User Management components for Atlassian products a
 	TODO: check
 CVE-2023-36660 (The OCB feature in libnettle in Nettle 3.9 before 3.9.1 allows memory  ...)
 	- nettle 3.9.1-1
+	[bookworm] - nettle <not-affected> (Vulnerable code not present)
+	[bullseye] - nettle <not-affected> (Vulnerable code not present)
+	[buster] - nettle <not-affected> (Vulnerable code not present)
 	NOTE: https://bugzilla.suse.com/show_bug.cgi?id=1212112
-	NOTE: https://git.lysator.liu.se/nettle/nettle/-/commit/867a4548b95705291a3afdd66d76e7f17ba2618f (nettle_3.9.1_release_20230601)
+	NOTE: Introduced with: https://git.lysator.liu.se/nettle/nettle/-/commit/9cf0e2d2675268a403194d85a78a44e8cbdf562b (nettle_3.9_release_20230514)
+	NOTE: Fixed by: https://git.lysator.liu.se/nettle/nettle/-/commit/867a4548b95705291a3afdd66d76e7f17ba2618f (nettle_3.9.1_release_20230601)
 CVE-2023-3396 (A vulnerability was found in Campcodes Retro Cellphone Online Store 1. ...)
 	NOT-FOR-US: Campcodes Retro Cellphone Online Store
 CVE-2023-36632 (The legacy email.utils.parseaddr function in Python through 3.11.4 all ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5549ca194c2962afb1c2315ffeeb0a67af37a889

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5549ca194c2962afb1c2315ffeeb0a67af37a889
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230626/c1ff71d6/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list