[Git][security-tracker-team/security-tracker][master] knot-resolver commit references

Moritz Muehlenhoff (@jmm) jmm at debian.org
Fri Feb 23 20:49:49 GMT 2024



Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ac35ffd0 by Moritz Muehlenhoff at 2024-02-23T21:49:06+01:00
knot-resolver commit references

- - - - -


2 changed files:

- data/CVE/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -2602,6 +2602,9 @@ CVE-2023-50387 (Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4
 	NOTE: https://gitlab.isc.org/isc-projects/bind9/-/commit/a520fbc0470a0d6b72db6aa0b8deda8798551614 (v9.16.48)
 	NOTE: https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2024q1/017430.html
 	NOTE: https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html
+	NOTE: https://github.com/CZ-NIC/knot-resolver/commit/7ddabe80fa05b76fc57b5a112a82a2c032032534
+	NOTE: https://github.com/CZ-NIC/knot-resolver/commit/feb65eb97b93f0f024d70c7f5f6cbc6802ba02ec (v5.7.1)
+	NOTE: https://github.com/CZ-NIC/knot-resolver/commit/cc5051b4441307d9b262fa382bc715391112ddbb (v5.7.1)
 	NOTE: https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released
 	NOTE: https://nlnetlabs.nl/news/2024/Feb/13/unbound-1.19.1-released/
 	NOTE: https://nlnetlabs.nl/downloads/unbound/CVE-2023-50387_CVE-2023-50868.txt
@@ -2616,6 +2619,15 @@ CVE-2023-50868 (The Closest Encloser Proof aspect of the DNS protocol (in RFC 51
 	NOTE: https://kb.isc.org/docs/cve-2023-50868
 	NOTE: https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2024q1/017430.html
 	NOTE: https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html
+	NOTE: https://github.com/CZ-NIC/knot-resolver/commit/e966b7fdb167add0ec37c56a954c2d847f627985 (v5.7.1)
+	NOTE: https://github.com/CZ-NIC/knot-resolver/commit/eccb8e278c1cde0548cc570eac619feaa290cede (v5.7.1)
+	NOTE: https://github.com/CZ-NIC/knot-resolver/commit/b5051ac26f34358b40f9115f977fe1f54e8f581e (v5.7.1)
+	NOTE: https://github.com/CZ-NIC/knot-resolver/commit/24699e9f206a8f957b516cad22a8e5790d226836 (v5.7.1)
+	NOTE: https://github.com/CZ-NIC/knot-resolver/commit/a05cf1d379d1af0958587bd111f791b72f404364 (v5.7.1)
+	NOTE: https://github.com/CZ-NIC/knot-resolver/commit/9b421cdf91f987e0254a06ff2c4e8fbf76dc2b58 (v5.7.1)
+	NOTE: https://github.com/CZ-NIC/knot-resolver/commit/5e80624b18d40ae44be704751d3b22943edf287f (v5.7.1)
+	NOTE: https://github.com/CZ-NIC/knot-resolver/commit/f9ba52e6f54bc1db122870df50cb364cb977436e (v5.7.1)
+	NOTE: https://github.com/CZ-NIC/knot-resolver/commit/b044babbee358dc305d770a1dab3a877c49468a7 (v5.7.1)
 	NOTE: https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released
 	NOTE: https://nlnetlabs.nl/news/2024/Feb/13/unbound-1.19.1-released/
 	NOTE: https://nlnetlabs.nl/downloads/unbound/CVE-2023-50387_CVE-2023-50868.txt
@@ -23165,6 +23177,7 @@ CVE-2023-46317 (Knot Resolver before 5.7.0 performs many TCP reconnections upon
 	[bullseye] - knot-resolver <no-dsa> (Minor issue)
 	NOTE: https://www.knot-resolver.cz/2023-08-22-knot-resolver-5.7.0.html
 	NOTE: https://gitlab.nic.cz/knot/knot-resolver/-/merge_requests/1448
+	NOTE: https://github.com/CZ-NIC/knot-resolver/commit/7aec8ebdf1428afcb7f5bc62764149ffeaf3d3fe (v6.0.6)
 CVE-2023-46315 (The zanllp sd-webui-infinite-image-browsing (aka Infinite Image Browsi ...)
 	NOT-FOR-US: Stable Diffusion webui Infinite Image Browsing
 CVE-2023-46095 (Cross-Site Request Forgery (CSRF) vulnerability in Chetan Gole Smooth  ...)


=====================================
data/dsa-needed.txt
=====================================
@@ -35,6 +35,8 @@ h2o (jmm)
 --
 iwd (carnil)
 --
+knot-resolver (jmm)
+--
 libreswan (jmm)
   Maintainer prepared bookworm-security update, but needs work on bullseye-security backports
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ac35ffd05389f115ed2ffa260d8825be5a7ed78e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ac35ffd05389f115ed2ffa260d8825be5a7ed78e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240223/1c3627b8/attachment-0001.htm>


More information about the debian-security-tracker-commits mailing list