[Git][security-tracker-team/security-tracker][master] Add entries fro tryton-{client,server} with last DLAs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Jul 1 05:41:39 BST 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
fddf16dd by Salvatore Bonaccorso at 2024-07-01T06:40:19+02:00
Add entries fro tryton-{client,server} with last DLAs

Buster end-of-life is 2024-06-30, and has been EOLed as well from the
security tracker perspective.

Link: https://lists.debian.org/debian-lts-announce/2024/06/msg00029.html
Link: https://lists.debian.org/debian-lts-announce/2024/06/msg00030.html

- - - - -


2 changed files:

- data/CVE/list
- data/DLA/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -23991,6 +23991,7 @@ CVE-2024-XXXX [tryton zipbomb DoS]
 	- tryton-server 6.0.45-1
 	[bookworm] - tryton-server 6.0.29-2+deb12u2
 	[bullseye] - tryton-server <no-dsa> (Minor issue)
+	[buster] - tryton-server 5.0.4-2+deb10u3
 	NOTE: https://discuss.tryton.org/t/security-release-for-issue-13142/7196
 	NOTE: https://foss.heptapod.net/tryton/tryton/-/issues/13142
 	NOTE: Regression in tryton-client fixed by: https://foss.heptapod.net/tryton/tryton/-/commit/96ccd17bd4db4be46bb42eb4217ba5c7dcb7de82 (6.0)


=====================================
data/DLA/list
=====================================
@@ -2,7 +2,9 @@
 	{CVE-2020-14196 CVE-2020-25829}
 	[buster] - pdns-recursor 4.1.11-1+deb10u2
 [30 Jun 2024] DLA-3854-1 tryton-client - security update
+	[buster] - tryton-client 5.0.5-1+deb10u1
 [30 Jun 2024] DLA-3853-1 tryton-server - security update
+	[buster] - tryton-server 5.0.4-2+deb10u3
 [30 Jun 2024] DLA-3852-1 edk2 - security update
 	{CVE-2023-48733}
 	[buster] - edk2 0~20181115.85588389-3+deb10u4



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fddf16dd67025fe64bf5b75206f9c685ac05b189

-- 
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fddf16dd67025fe64bf5b75206f9c685ac05b189
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240701/1fc8428c/attachment.htm>

More information about the debian-security-tracker-commits mailing list