[Git][security-tracker-team/security-tracker][master] ATS fixed in sid

Thu Nov 2 15:38:59 GMT 2023


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
576bb861 by Moritz Muehlenhoff at 2023-11-02T16:38:27+01:00
ATS fixed in sid

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2857,7 +2857,7 @@ CVE-2023-42459 (Fast DDS is a C++ implementation of the DDS (Data Distribution S
 	NOTE: https://github.com/eProsima/Fast-DDS/pull/3824
 	NOTE: https://github.com/eProsima/Fast-DDS/commit/1e978c6f3d0ca1df6b323b37fd4902b0762ececb
 CVE-2023-41752 (Exposure of Sensitive Information to an Unauthorized Actor vulnerabili ...)
-	- trafficserver <unfixed> (bug #1054427)
+	- trafficserver 9.2.3+ds-1 (bug #1054427)
 	NOTE: https://lists.apache.org/thread/5py8h42mxfsn8l1wy6o41xwhsjlsd87q
 	NOTE: https://github.com/apache/trafficserver/commit/334839cb7a6724c71a5542e924251a8d931774b0 (8.1.9)
 	NOTE: https://github.com/apache/trafficserver/commit/de7c8a78edd5b75e311561dfaa133e9d71ea8a5e (9.2.3-rc0)
@@ -2872,7 +2872,7 @@ CVE-2023-40373 (IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server
 CVE-2023-40372 (IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 ...)
 	NOT-FOR-US: IBM
 CVE-2023-39456 (Improper Input Validation vulnerability in Apache Traffic Server with  ...)
-	- trafficserver <unfixed> (bug #1054427)
+	- trafficserver 9.2.3+ds-1 (bug #1054427)
 	[bullseye] - trafficserver <not-affected> (Vulnerable code not present)
 	[buster] - trafficserver <not-affected> (Vulnerable code not present)
 	NOTE: https://lists.apache.org/thread/5py8h42mxfsn8l1wy6o41xwhsjlsd87q
@@ -4307,7 +4307,7 @@ CVE-2023-44487 (The HTTP/2 protocol allows a denial of service (server resource
 	{DSA-5540-1 DSA-5522-1 DSA-5521-1 DLA-3641-1 DLA-3638-1 DLA-3621-1 DLA-3617-1}
 	- tomcat9 9.0.70-2
 	- tomcat10 10.1.14-1
-	- trafficserver <unfixed> (bug #1053801; bug #1054427)
+	- trafficserver 9.2.3+ds-1 (bug #1053801; bug #1054427)
 	- h2o 2.2.5+dfsg2-8 (bug #1054232)
 	- haproxy 1.8.13-1
 	- nginx 1.24.0-2 (unimportant; bug #1053770)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/576bb86131856763a2693fd31a5e0b0e488c5ebe

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/576bb86131856763a2693fd31a5e0b0e488c5ebe
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231102/a47d048b/attachment.htm>
