[Git][security-tracker-team/security-tracker][master] vlc, cyrus-imapd DSAs

Tue Jun 11 19:16:53 BST 2024


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5accdd1a by Moritz Mühlenhoff at 2024-06-11T20:13:46+02:00
vlc, cyrus-imapd DSAs

- - - - -


3 changed files:

- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -1573,6 +1573,7 @@ CVE-2024-1161 (The Brizy \u2013 Page Builder plugin for WordPress is vulnerable
 	NOT-FOR-US: WordPress plugin
 CVE-2024-34055 (Cyrus IMAP before 3.8.3 and 3.10.x before 3.10.0-rc1 allows authentica ...)
 	- cyrus-imapd 3.8.3-1
+	[bullseye] - cyrus-imapd <ignored> (Too intrusive to backport)
 	NOTE: https://cyrus.topicbox.com/groups/announce/Ta8e3998446caf7f8/cyrus-imap-3-8-3-3-6-5-and-3-4-8-released
 CVE-2024-5463 (A vulnerability regarding buffer copy without checking the size of inp ...)
 	NOT-FOR-US: Synology


=====================================
data/DSA/list
=====================================
@@ -1,3 +1,9 @@
+[11 Jun 2024] DSA-5708-1 cyrus-imapd - security update
+	{CVE-2024-34055}
+	[bookworm] - cyrus-imapd 3.6.1-4+deb12u2
+[11 Jun 2024] DSA-5707-1 vlc - security update
+	[bullseye] - vlc 3.0.21-0+deb11u1
+	[bookworm] - vlc 3.0.21-0+deb12u1
 [05 Jun 2024] DSA-5706-1 libarchive - security update
 	{CVE-2024-26256}
 	[bookworm] - libarchive 3.6.2-1+deb12u1


=====================================
data/dsa-needed.txt
=====================================
@@ -14,8 +14,6 @@ If needed, specify the release by adding a slash after the name of the source pa
 --
 cacti
 --
-cyrus-imapd (jmm)
---
 dnsdist (jmm)
 --
 dnsmasq



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5accdd1a9bc7d70aec2e7ba1faa6e166d1aee177

-- 
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5accdd1a9bc7d70aec2e7ba1faa6e166d1aee177
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240611/49cc710d/attachment-0001.htm>
