[Git][security-tracker-team/security-tracker][master] Move rabbitmq-server to DSA needed list

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
eca91412 by Salvatore Bonaccorso at 2023-11-29T09:32:15+01:00
Move rabbitmq-server to DSA needed list

- - - - -


2 changed files:

- data/CVE/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -5378,8 +5378,6 @@ CVE-2023-46119 (Parse Server is an open source backend that can be deployed to a
 	NOT-FOR-US: Parse Server
 CVE-2023-46118 (RabbitMQ is a multi-protocol messaging and streaming broker. HTTP API  ...)
 	- rabbitmq-server 3.10.8-3 (bug #1056723)
-	[bookworm] - rabbitmq-server <no-dsa> (Minor issue)
-	[bullseye] - rabbitmq-server <no-dsa> (Minor issue)
 	NOTE: https://github.com/rabbitmq/rabbitmq-server/security/advisories/GHSA-w6cq-9cf4-gqpg
 	NOTE: https://github.com/rabbitmq/rabbitmq-server/pull/9708
 CVE-2023-45555 (File Upload vulnerability in zzzCMS v.2.1.9 allows a remote attacker t ...)


=====================================
data/dsa-needed.txt
=====================================
@@ -55,6 +55,9 @@ python3.11/stable (carnil)
 --
 python3.9/oldstable
 --
+rabbitmq-server
+  Maintainer suggested to release fixes for CVE-2023-46118 via DSA
+--
 redmine/stable
 --
 ring



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/eca914126181396e5463a48f4b379607f3041d8a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/eca914126181396e5463a48f4b379607f3041d8a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231129/4b564e85/attachment.htm>