[Git][security-tracker-team/security-tracker][master] Add CVE-2024-36405/liboqs

Fri Jun 14 20:08:27 BST 2024


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
818f36b9 by Salvatore Bonaccorso at 2024-06-14T21:07:57+02:00
Add CVE-2024-36405/liboqs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1794,7 +1794,10 @@ CVE-2024-36407 (SuiteCRM is an open-source Customer Relationship Management (CRM
 CVE-2024-36406 (SuiteCRM is an open-source Customer Relationship Management (CRM) soft ...)
 	NOT-FOR-US: SuiteCRM
 CVE-2024-36405 (liboqs is a C-language cryptographic library that provides implementat ...)
-	TODO: check
+	- liboqs <unfixed>
+	NOTE: https://github.com/open-quantum-safe/liboqs/security/advisories/GHSA-f2v9-5498-2vpp
+	NOTE: https://github.com/open-quantum-safe/liboqs/commit/982c762c242ef549c914891b47bf6e0ed6321f91 (main)
+	NOTE: https://github.com/open-quantum-safe/liboqs/commit/fbfac754585d788c19b49cac569e4e2ea182f579 (0.10.1-rc1)
 CVE-2024-35754 (Improper Limitation of a Pathname to a Restricted Directory ('Path Tra ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2024-35749 (Authentication Bypass by Spoofing vulnerability in Acurax Under Constr ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/818f36b94cbcceec27bc7d4ddb0cb7a76e2647f8

-- 
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/818f36b94cbcceec27bc7d4ddb0cb7a76e2647f8
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240614/c225f71e/attachment.htm>
