[Git][security-tracker-team/security-tracker][master] Reference upstream commits for some 389-ds-base issues
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Jul 28 21:08:22 BST 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
27dcf410 by Salvatore Bonaccorso at 2024-07-28T22:07:40+02:00
Reference upstream commits for some 389-ds-base issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -9328,6 +9328,7 @@ CVE-2024-5967 (A vulnerability was found in Keycloak. The LDAP testing endpoint
CVE-2024-5953 (A denial of service vulnerability was found in the 389-ds-base LDAP se ...)
- 389-ds-base <unfixed>
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2292104
+ NOTE: https://github.com/389ds/389-ds-base/commit/9e6cefb1f37740f3ce180f272ee0653d65b878d9
CVE-2024-5899 (When Bazel Plugin in intellij imports a project (either using "import ...)
NOT-FOR-US: intellij plugin
CVE-2024-5750
@@ -14798,6 +14799,7 @@ CVE-2024-3969 (XML External Entity injection vulnerability foundin OpenText\u212
CVE-2024-3657 (A flaw was found in 389-ds-base. A specially-crafted LDAP query can po ...)
- 389-ds-base <unfixed>
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2274401
+ NOTE: https://github.com/389ds/389-ds-base/commit/b1e9acf39d1e1b752e8b4b469f32e17c743ad6f9
CVE-2024-36472 (In GNOME Shell through 45.7, a portal helper can be launched automatic ...)
- gnome-shell <unfixed> (bug #1072124)
[bookworm] - gnome-shell <no-dsa> (Minor issue)
@@ -14885,6 +14887,7 @@ CVE-2024-2451 (Improper fingerprint validation in the TeamViewer Client (Full &
CVE-2024-2199 (A denial of service vulnerability was found in 389-ds-base ldap server ...)
- 389-ds-base <unfixed> (bug #1072531)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2267976
+ NOTE: https://github.com/389ds/389-ds-base/commit/36a2f1d5e4e2265140320087104c6799a97c28d9
CVE-2024-29072 (A privilege escalation vulnerability exists in the Foxit Reader 2024.2 ...)
NOT-FOR-US: Foxit Reader
CVE-2024-28061 (An issue was discovered in Apiris Kafeo 6.4.4. It permits a bypass, of ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/27dcf410a4bc67fbb581eddfa8fa0353a3fcc8fb
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/27dcf410a4bc67fbb581eddfa8fa0353a3fcc8fb
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240728/66fe045a/attachment.htm>
More information about the debian-security-tracker-commits
mailing list