[Git][security-tracker-team/security-tracker][master] Track fixed version for glibc issues via unstable

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Jan 30 19:14:44 GMT 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0f90476b by Salvatore Bonaccorso at 2024-01-30T20:14:27+01:00
Track fixed version for glibc issues via unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,17 +1,17 @@
 CVE-2023-6246 [syslog: Fix heap buffer overflow in __vsyslog_internal]
-	- glibc <unfixed>
+	- glibc 2.37-15
 	[bullseye] - glibc <not-affected> (Vulnerable code not present)
 	[buster] - glibc <not-affected> (Vulnerable code not present)
 	NOTE: https://www.qualys.com/2024/01/30/syslog
 	NOTE: Introducecd by: https://sourceware.org/git?p=glibc.git;a=commit;h=52a5be0df411ef3ff45c10c7c308cb92993d15b1
 	NOTE: Fixed by: https://sourceware.org/git?p=glibc.git;a=commit;h=6bd0e4efcc78f3c0115e5ea9739a1642807450da
 CVE-2023-6779 [syslog: Fix heap buffer overflow in __vsyslog_internal]
-	- glibc <unfixed>
+	- glibc 2.37-15
 	[bullseye] - glibc <not-affected> (Vulnerable code not present)
 	[buster] - glibc <not-affected> (Vulnerable code not present)
 	NOTE: Fixed by: https://sourceware.org/git/?p=glibc.git;a=commit;h=7e5a0c286da33159d47d0122007aac016f3e02cd
 CVE-2023-6780 [syslog: Fix integer overflow in __vsyslog_internal]
-	- glibc <unfixed>
+	- glibc 2.37-15
 	[bullseye] - glibc <not-affected> (Vulnerable code not present)
 	[buster] - glibc <not-affected> (Vulnerable code not present)
 	NOTE: Fixed by: https://sourceware.org/git/?p=glibc.git;a=commit;h=ddf542da94caf97ff43cc2875c88749880b7259b



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0f90476bae5278b14243d1360e4b8ce747e6abae

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0f90476bae5278b14243d1360e4b8ce747e6abae
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240130/5d60077b/attachment.htm>

More information about the debian-security-tracker-commits mailing list