[Git][security-tracker-team/security-tracker][master] 2 commits: Replace commit for CVE-2023-29483 in v2.6.0 tag

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Feb 16 21:06:30 GMT 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3366053b by Salvatore Bonaccorso at 2024-02-16T22:04:22+01:00
Replace commit for CVE-2023-29483 in v2.6.0 tag

- - - - -
f63097b5 by Salvatore Bonaccorso at 2024-02-16T22:04:52+01:00
Drop tracking for experimental for CVE-2023-29483

Since this was, as a followup commit was as well needed anyway not
correct. To fix the issue the two commits listed in the notes are
required, for which one was really in v2.6.0rc1 but the followup commit
was only in v2.6.0. The complete fix in unstable landed with 2.6.0-1.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -49428,11 +49428,10 @@ CVE-2023-29484 (In Terminalfour before 8.3.16, misconfigured LDAP users are able
 	NOT-FOR-US: Terminalfour
 CVE-2023-29483
 	RESERVED
-	[experimental] - dnspython 2.6.0~rc1-1
 	- dnspython 2.6.0-1
 	NOTE: https://www.dnspython.org/news/2.6.0rc1/
 	NOTE: https://github.com/rthalley/dnspython/commit/f66e25b5f549acf66d1fb6ead13eb3cff7d09af3 (v2.6.0rc1)
-	NOTE: https://github.com/rthalley/dnspython/commit/5a441b9854425c4e23abb8f91973361fe8401e33
+	NOTE: https://github.com/rthalley/dnspython/commit/e093299a49967696b1c58b68e4767de5031a3e46 (v2.6.0)
 CVE-2023-29482
 	RESERVED
 CVE-2023-29481



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/2b3034a8f10ca87887da5b456c1aedb2a617374a...f63097b5d19aa753722421c06108e01783b54eca

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/2b3034a8f10ca87887da5b456c1aedb2a617374a...f63097b5d19aa753722421c06108e01783b54eca
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240216/ee488f5a/attachment.htm>

More information about the debian-security-tracker-commits mailing list