[Git][security-tracker-team/security-tracker][master] bugnums

Moritz Muehlenhoff (@jmm) jmm at debian.org
Mon Jan 15 19:54:43 GMT 2024 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a46de165 by Moritz Muehlenhoff at 2024-01-15T20:54:12+01:00
bugnums

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -8,7 +8,7 @@ CVE-2023-6237 [openssl: Checking excessively long invalid RSA public keys may ta
 	NOTE: https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=a830f551557d3d66a84bbb18a5b889c640c36294 (openssl-3.1)
 	NOTE: https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=18c02492138d1eb8b6548cb26e7b625fb2414a2a (openssl-3.0)
 CVE-2024-XXXX [RUSTSEC-2023-0078]
-	- rust-tracing <unfixed>
+	- rust-tracing <unfixed> (bug #1060861)
 	[bookworm] - rust-tracing <not-affected> (Vulnerable code not present)
 	NOTE: https://rustsec.org/advisories/RUSTSEC-2023-0078.html
 	NOTE: https://github.com/tokio-rs/tracing/pull/2765
@@ -2487,7 +2487,7 @@ CVE-2023-6436 (Improper Neutralization of Special Elements used in an SQL Comman
 CVE-2023-51652 (OWASP AntiSamy .NET is a library for performing cleansing of HTML comi ...)
 	NOT-FOR-US: OWASP AntiSamy .NET library
 CVE-2023-50711 (vmm-sys-util is a collection of modules that provides helpers and util ...)
-	- rust-vmm-sys-util <unfixed>
+	- rust-vmm-sys-util <unfixed> (bug #1060860)
 	NOTE: https://rustsec.org/advisories/RUSTSEC-2024-0002.html
 	NOTE: https://github.com/advisories/GHSA-875g-mfp6-g7f9
 	NOTE: https://github.com/rust-vmm/vmm-sys-util/commit/30172fca2a8e0a38667d934ee56682247e13f167 (v0.12.1)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a46de165aa55c1f7666a5711fb56e620f15b330b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a46de165aa55c1f7666a5711fb56e620f15b330b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240115/5e5cabb2/attachment.htm>

More information about the debian-security-tracker-commits mailing list