[Git][security-tracker-team/security-tracker][master] Add CVE-2024-7383/libnbd
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Aug 5 21:02:58 BST 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
734af15a by Salvatore Bonaccorso at 2024-08-05T22:02:21+02:00
Add CVE-2024-7383/libnbd
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,8 @@
+CVE-2024-7383 [NBD server improper certificate validation]
+ - libnbd <unfixed>
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2302865
+ NOTE: https://lists.libguestfs.org/archives/list/guestfs%40lists.libguestfs.org/message/LHR3BW6RJ7K4BJBQIYV3GTZLSY27VZO2/
+ TODO: queried Red Hat about scope of the CVE in relation to issues reported in mailinglist post
CVE-2024-36448
NOT-FOR-US: Apache IoTDB
CVE-2024-6472
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/734af15af7b27710d7294b44f67fc5cab7ef522e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/734af15af7b27710d7294b44f67fc5cab7ef522e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240805/fa2dc4d1/attachment.htm>
More information about the debian-security-tracker-commits
mailing list