[Git][security-tracker-team/security-tracker][master] Reserve DLA-3745-1 for gsoap
Adrian Bunk (@bunk)
bunk at debian.org
Thu Feb 29 23:47:30 GMT 2024
Adrian Bunk pushed to branch master at Debian Security Tracker / security-tracker
Commits:
3b7538d4 by Adrian Bunk at 2024-02-29T23:47:08+00:00
Reserve DLA-3745-1 for gsoap
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -275300,27 +275300,22 @@ CVE-2020-13579 (An exploitable integer overflow vulnerability exists in the Plan
NOT-FOR-US: SoftMaker
CVE-2020-13578 (A denial-of-service vulnerability exists in the WS-Security plugin fun ...)
- gsoap 2.8.104-3 (bug #983596)
- [buster] - gsoap <no-dsa> (Minor issue)
[stretch] - gsoap <ignored> (intrusive to backport, will either not compile or may cause runtime errors)
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2020-1189
CVE-2020-13577 (A denial-of-service vulnerability exists in the WS-Security plugin fun ...)
- gsoap 2.8.104-3 (bug #983596)
- [buster] - gsoap <no-dsa> (Minor issue)
[stretch] - gsoap <ignored> (intrusive to backport, will either not compile or may cause runtime errors)
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2020-1188
CVE-2020-13576 (A code execution vulnerability exists in the WS-Addressing plugin func ...)
- gsoap 2.8.104-3 (bug #983596)
- [buster] - gsoap <no-dsa> (Minor issue)
[stretch] - gsoap <ignored> (intrusive to backport, will either not compile or may cause runtime errors)
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2020-1187
CVE-2020-13575 (A denial-of-service vulnerability exists in the WS-Addressing plugin f ...)
- gsoap 2.8.104-3 (bug #983596)
- [buster] - gsoap <no-dsa> (Minor issue)
[stretch] - gsoap <ignored> (intrusive to backport, will either not compile or may cause runtime errors)
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2020-1186
CVE-2020-13574 (A denial-of-service vulnerability exists in the WS-Security plugin fun ...)
- gsoap 2.8.104-3 (bug #983596)
- [buster] - gsoap <no-dsa> (Minor issue)
[stretch] - gsoap <ignored> (intrusive to backport, will either not compile or may cause runtime errors)
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2020-1185
CVE-2020-13573 (A denial-of-service vulnerability exists in the Ethernet/IP server fun ...)
=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[29 Feb 2024] DLA-3745-1 gsoap - security update
+ {CVE-2020-13574 CVE-2020-13575 CVE-2020-13576 CVE-2020-13577 CVE-2020-13578}
+ [buster] - gsoap 2.8.75-1+deb10u1
[29 Feb 2024] DLA-3744-1 python-django - security update
{CVE-2021-28658 CVE-2021-31542 CVE-2021-33203 CVE-2021-33571}
[buster] - python-django 1:1.11.29-1+deb10u11
=====================================
data/dla-needed.txt
=====================================
@@ -107,9 +107,6 @@ frr
golang-go.crypto
NOTE: 20231219: Added by Front-Desk (ta)
--
-gsoap (Adrian Bunk)
- NOTE: 20240229: Forward-port of stretch ELA. (bunk)
---
gtkwave
NOTE: 20240116: Added by Front-Desk (lamby)
NOTE: 20240116: For CVE-2023-32650 etc. (lamby)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3b7538d4a5f7c810200cfa9138192dc9731ee0b2
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3b7538d4a5f7c810200cfa9138192dc9731ee0b2
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240229/a02a5d80/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list