[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2024-23525/libspreadsheet-parsexlsx-perl via unstable
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Jan 21 19:54:43 GMT 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a9f97fa0 by Salvatore Bonaccorso at 2024-01-21T20:54:02+01:00
Track fixed version for CVE-2024-23525/libspreadsheet-parsexlsx-perl via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -388,7 +388,7 @@ CVE-2023-34348 (AVEVA PI Server versions 2023 and 2018 SP3 P05 and prior contain
CVE-2023-31274 (AVEVA PI Server versions 2023 and 2018 SP3 P05 and prior contain a vul ...)
NOT-FOR-US: AVEVA PI Server
CVE-2024-23525 (The Spreadsheet::ParseXLSX package before 0.30 for Perl allows XXE att ...)
- - libspreadsheet-parsexlsx-perl <unfixed> (bug #1061098)
+ - libspreadsheet-parsexlsx-perl 0.31-1 (bug #1061098)
NOTE: https://gist.github.com/phvietan/d1c95a88ab6e17047b0248d6bf9eac4a
NOTE: https://github.com/MichaelDaum/spreadsheet-parsexlsx/issues/10
NOTE: https://github.com/MichaelDaum/spreadsheet-parsexlsx/commit/1d55f90caf433c7442e5be21a1849af2b5522ffe (0.30)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a9f97fa097609b8af712f4dc821e83ae74f05bf8
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a9f97fa097609b8af712f4dc821e83ae74f05bf8
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240121/82bd4435/attachment.htm>
More information about the debian-security-tracker-commits
mailing list