[Git][security-tracker-team/security-tracker][master] Add CVE-2024-24576/rustc

Tue Apr 9 21:23:02 BST 2024


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1bc0411e by Salvatore Bonaccorso at 2024-04-09T22:22:39+02:00
Add CVE-2024-24576/rustc

Follow exceptionally the same pattern as we do for e.g. firefox-esr
issues which do only affect when running on Windows.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -533,7 +533,8 @@ CVE-2024-25115 (RedisBloom adds a set of probabilistic data structures to Redis.
 CVE-2024-24694 (Improper privilege management in the installer for Zoom Desktop Client ...)
 	TODO: check
 CVE-2024-24576 (Rust is a programming language. The Rust Security Response WG was noti ...)
-	TODO: check
+	- rustc <not-affected> (Only affects rustc on Windows)
+	NOTE: https://github.com/rust-lang/rust/security/advisories/GHSA-q455-m56c-85mh
 CVE-2024-24245 (An issue in Canimaan Software LTD ClamXAV v3.1.2 through v3.6.1 and fi ...)
 	TODO: check
 CVE-2024-23671 (A improper limitation of a pathname to a restricted directory ('path t ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1bc0411e50e07215c7a08a1cdccf63835ee08947

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1bc0411e50e07215c7a08a1cdccf63835ee08947
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240409/f4b803fe/attachment.htm>
