[Git][security-tracker-team/security-tracker][master] Note updates for suricata CVEs
Adrian Bunk (@bunk)
bunk at debian.org
Mon Aug 26 15:31:55 BST 2024
Adrian Bunk pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ab09020c by Adrian Bunk at 2024-08-26T17:31:16+03:00
Note updates for suricata CVEs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -238651,7 +238651,7 @@ CVE-2021-37592 (Suricata before 5.0.8 and 6.x before 6.0.4 allows TCP evasion vi
[buster] - suricata <no-dsa> (Minor issue)
[stretch] - suricata <no-dsa> (Minor issue)
NOTE: https://forum.suricata.io/t/suricata-6-0-4-and-5-0-8-released/1942
- NOTE: https://redmine.openinfosecfoundation.org/issues/4569 (not public)
+ NOTE: https://redmine.openinfosecfoundation.org/issues/4569
CVE-2021-37591
RESERVED
CVE-2021-37590
@@ -244733,6 +244733,7 @@ CVE-2021-35063 (Suricata before 5.0.7 and 6.x before 6.0.3 has a "critical evasi
[buster] - suricata <no-dsa> (Minor issue)
[stretch] - suricata <no-dsa> (Minor issue)
NOTE: https://forum.suricata.io/t/suricata-6-0-3-and-5-0-7-released/1489
+ NOTE: https://redmine.openinfosecfoundation.org/issues/4513
CVE-2021-35062 (A Shell Metacharacter Injection vulnerability in result.php in DRK Ode ...)
NOT-FOR-US: DRK Odenwaldkreis Testerfassung
CVE-2021-35061 (Multiple cross-site scripting (XSS) vulnerabilities in DRK Odenwaldkre ...)
@@ -374011,12 +374012,14 @@ CVE-2019-16411 (An issue was discovered in Suricata 4.1.4. By sending multiple I
[stretch] - suricata <no-dsa> (Minor issue)
[jessie] - suricata <no-dsa> (Minor issue)
NOTE: https://suricata-ids.org/2019/09/24/suricata-4-1-5-released/
+ NOTE: https://redmine.openinfosecfoundation.org/issues/3173
CVE-2019-16410 (An issue was discovered in Suricata 4.1.4. By sending multiple fragmen ...)
- suricata 1:4.1.5-1 (low)
[buster] - suricata <no-dsa> (Minor issue)
[stretch] - suricata <no-dsa> (Minor issue)
[jessie] - suricata <no-dsa> (Minor issue)
NOTE: https://suricata-ids.org/2019/09/24/suricata-4-1-5-released/
+ NOTE: https://redmine.openinfosecfoundation.org/issues/3170
CVE-2019-16409 (In the Versioned Files module through 2.0.3 for SilverStripe 3.x, unpu ...)
NOT-FOR-US: SilverStripe
CVE-2019-16408
@@ -376198,6 +376201,7 @@ CVE-2019-15699 (An issue was discovered in app-layer-ssl.c in Suricata 4.1.4. Up
[stretch] - suricata <no-dsa> (Minor issue)
[jessie] - suricata <not-affected> (Vulnerable code introduced later)
NOTE: https://suricata-ids.org/2019/09/24/suricata-4-1-5-released/
+ NOTE: https://redmine.openinfosecfoundation.org/issues/3168
CVE-2019-15698 (In Octopus Deploy 2019.7.3 through 2019.7.9, in certain circumstances, ...)
NOT-FOR-US: Octopus Deploy
CVE-2019-15697
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ab09020c3a2fb826861f06f767b2453855ee4e5c
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ab09020c3a2fb826861f06f767b2453855ee4e5c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240826/d32f9a2e/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list