[Git][security-tracker-team/security-tracker][master] Add two libpcap issues

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Aug 31 10:50:42 BST 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
80047e0c by Salvatore Bonaccorso at 2024-08-31T11:47:32+02:00
Add two libpcap issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -7,7 +7,10 @@ CVE-2024-8346 (A vulnerability classified as critical has been found in SourceCo
 CVE-2024-8276 (The WPZOOM Portfolio Lite \u2013 Filterable Portfolio Plugin plugin fo ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2024-8006 (Remote packet capture support is disabled by default in libpcap.  When ...)
-	TODO: check
+	- libpcap <unfixed> (unimportant)
+	NOTE: https://github.com/the-tcpdump-group/libpcap/commit/0f8a103469ce87d2b8d68c5130a46ddb7fb5eb29 (master)
+	NOTE: https://github.com/the-tcpdump-group/libpcap/commit/8a633ee5b9ecd9d38a587ac9b204e2380713b0d6 (libpcap-1.10.5)
+	NOTE: Builts in Debian do not enable remote package capture (--enable-remote)
 CVE-2024-7435 (The Attire theme for WordPress is vulnerable to PHP Object Injection i ...)
 	NOT-FOR-US: WordPress theme
 CVE-2024-6586 (Lightdash version 0.1024.6 allows users with the necessary permissions ...)
@@ -33,7 +36,10 @@ CVE-2024-39579 (Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contains
 CVE-2024-39578 (Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.1 contains a UNIX ...)
 	TODO: check
 CVE-2023-7256 (In affected libpcap versions during the setup of a remote packet captu ...)
-	TODO: check
+	- libpcap <unfixed> (unimportant)
+	NOTE: https://github.com/the-tcpdump-group/libpcap/commit/262e4f34979872d822ccedf9f318ed89c4d31c03 (master)
+	NOTE: https://github.com/the-tcpdump-group/libpcap/commit/2aa69b04d8173b18a0e3492e0c8f2f7fabdf642d (libpcap-1.10.5)
+	NOTE: Builts in Debian do not enable remote package capture (--enable-remote)
 CVE-2024-44945 (In the Linux kernel, the following vulnerability has been resolved:  n ...)
 	- linux <unfixed>
 	[bookworm] - linux <not-affected> (Vulnerable code not present)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/80047e0c20df4e55c8ff771025f498d030943e8b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/80047e0c20df4e55c8ff771025f498d030943e8b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240831/4e35f02b/attachment.htm>

More information about the debian-security-tracker-commits mailing list