[Git][security-tracker-team/security-tracker][master] remove TODO, Red Hat is upstream for freeipa

Moritz Muehlenhoff (@jmm) jmm at debian.org
Thu Feb 29 15:25:57 GMT 2024



Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
314a96a9 by Moritz Muehlenhoff at 2024-02-29T16:25:28+01:00
remove TODO, Red Hat is upstream for freeipa

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2534,7 +2534,6 @@ CVE-2024-1669 (Out of bounds memory access in Blink in Google Chrome prior to 12
 CVE-2024-1481 [specially crafted HTTP requests potentially lead to DoS or data exposure]
 	- freeipa <unfixed>
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2262169
-	TODO: check upstream status
 CVE-2024-26270 (The Account Settings page in Liferay Portal 7.4.3.76 through 7.4.3.99, ...)
 	NOT-FOR-US: Liferay
 CVE-2024-26268 (User enumeration vulnerability in Liferay Portal 7.2.0 through 7.4.3.2 ...)
@@ -8901,7 +8900,8 @@ CVE-2023-5130 (A buffer overflow vulnerability exists in Delta Electronics WPLSo
 	NOT-FOR-US: Delta Electronics
 CVE-2023-51258 (A memory leak issue discovered in YASM v.1.3.0 allows a local attacker ...)
 	- yasm <unfixed> (unimportant)
-	NOTE: Crash in CLI tool, no security impact
+	NOTE: Memory leak in CLI tool, no security impact
+	NOTE: https://github.com/yasm/yasm/issues/257
 CVE-2023-51217 (An issue discovered in TenghuTOS TWS-200 firmware version:V4.0-2018092 ...)
 	NOT-FOR-US: TenghuTOS TWS-200 firmware
 CVE-2023-50963 (IBM Storage Defender - Data Protect 1.0.0 through 1.4.1 is vulnerable  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/314a96a9752ee4a07c698cf83b4a9026d4b2dca9

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/314a96a9752ee4a07c698cf83b4a9026d4b2dca9
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240229/21353a10/attachment.htm>


More information about the debian-security-tracker-commits mailing list