[Git][security-tracker-team/security-tracker][master] 2 commits: Track additional bug covering more CVEs but including CVE-2023-44487

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Oct 23 20:36:42 BST 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
51122857 by Salvatore Bonaccorso at 2023-10-23T21:29:51+02:00
Track additional bug covering more CVEs but including CVE-2023-44487

- - - - -
7f98fc5f by Salvatore Bonaccorso at 2023-10-23T21:36:04+02:00
Add CVE-2023-46316/traceroute

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,8 @@
+CVE-2023-46316 [Fix command line parsing in wrappers]
+	- traceroute 1:2.1.3-1
+	[bookworm] - traceroute <no-dsa> (Minor issue)
+	[bullseye] - traceroute <no-dsa> (Minor issue)
+	NOTE: https://sourceforge.net/projects/traceroute/files/traceroute/traceroute-2.1.3/
 CVE-2023-46586
 	- weborf 1.0-1 (bug #1054417)
 	[bookworm] - weborf <no-dsa> (Minor issue)
@@ -2463,7 +2468,7 @@ CVE-2023-44487 (The HTTP/2 protocol allows a denial of service (server resource
 	{DSA-5522-1 DSA-5521-1 DLA-3621-1 DLA-3617-1}
 	- tomcat9 9.0.70-2
 	- tomcat10 10.1.14-1
-	- trafficserver <unfixed> (bug #1053801)
+	- trafficserver <unfixed> (bug #1053801; bug #1054427)
 	- h2o 2.2.5+dfsg2-8 (bug #1054232)
 	- haproxy 1.8.13-1
 	- nginx 1.24.0-2 (unimportant; bug #1053770)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/149e2915fe5e2fc3d416794df32f722e17ce38e8...7f98fc5fa9adfd597dc794f4dc11b25f55caf5cc

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/149e2915fe5e2fc3d416794df32f722e17ce38e8...7f98fc5fa9adfd597dc794f4dc11b25f55caf5cc
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231023/a8b1b660/attachment.htm>

More information about the debian-security-tracker-commits mailing list