[Git][security-tracker-team/security-tracker][master] Update status for CVE-2024-1062/389-ds-base
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Aug 1 21:52:03 BST 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
8f74ea2b by Salvatore Bonaccorso at 2024-08-01T22:51:19+02:00
Update status for CVE-2024-1062/389-ds-base
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -54405,13 +54405,15 @@ CVE-2023-31505 (An arbitrary file upload vulnerability in Schlix CMS v2.2.8-1, a
CVE-2023-2439 (The UserPro plugin for WordPress is vulnerable to Stored Cross-Site Sc ...)
NOT-FOR-US: WordPress plugin
CVE-2024-1062 (A heap overflow flaw was found in 389-ds-base. This issue leads to a d ...)
- - 389-ds-base <unfixed> (bug #1066120)
+ - 389-ds-base 2.3.4+dfsg1-1 (bug #1066120)
[bookworm] - 389-ds-base <no-dsa> (Minor issue)
[bullseye] - 389-ds-base <no-dsa> (Minor issue)
[buster] - 389-ds-base <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2261879
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2256711
NOTE: https://github.com/389ds/389-ds-base/issues/5647
+ NOTE: Fixed by: https://github.com/389ds/389-ds-base/commit/db7be9fbea1603202fe5829f7ae46bfb83d951c0 (389-ds-base-2.3.3)
+ NOTE: Fixed by: https://github.com/389ds/389-ds-base/commit/fd6b417fc53d1c97675638c5489b122e1cf4f1d6 (389-ds-base-2.3.3)
CVE-2023-5992 (A vulnerability was found in OpenSC where PKCS#1 encryption padding re ...)
- opensc 0.25.0~rc1-1 (bug #1064189)
[bookworm] - opensc <no-dsa> (Minor issue)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8f74ea2b9212f71be2a9a27afbf64c1b4bc93447
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8f74ea2b9212f71be2a9a27afbf64c1b4bc93447
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240801/40a41a4f/attachment.htm>
More information about the debian-security-tracker-commits
mailing list