[Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2024-2408/php7.4: fix dist bookworm->bullseye

Thu Jun 20 12:56:06 BST 2024


Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker


Commits:
bd6634e3 by Sylvain Beucler at 2024-06-20T13:54:46+02:00
CVE-2024-2408/php7.4: fix dist bookworm->bullseye

- - - - -
60dd236b by Sylvain Beucler at 2024-06-20T13:55:22+02:00
CVE-2024-2408/php7.3: buster postponed

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3540,8 +3540,9 @@ CVE-2024-2408 (The openssl_private_decrypt function in PHP, when using PKCS1 pad
 	- php8.2 <unfixed>
 	[bookworm] - php8.2 <postponed> (Minor issue, revisit when fixed upstream)
 	- php7.4 <removed>
-	[bookworm] - php7.4 <postponed> (Minor issue, revisit when fixed upstream)
+	[bullseye] - php7.4 <postponed> (Minor issue, revisit when fixed upstream)
 	- php7.3 <removed>
+	[buster] - php7.3 <postponed> (Minor issue, revisit when fixed upstream)
 	NOTE: https://github.com/php/php-src/security/advisories/GHSA-hh26-4ppw-5864
 CVE-2024-25929 (Missing Authorization vulnerability in MultiVendorX Product Catalog En ...)
 	NOT-FOR-US: WordPress plugin



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/0b4e358a8403c68d8ebe26fbbbd230f896593e95...60dd236b03c8e6cf9589c701e579bdb64fe2ca12

-- 
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/0b4e358a8403c68d8ebe26fbbbd230f896593e95...60dd236b03c8e6cf9589c701e579bdb64fe2ca12
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240620/627274c5/attachment.htm>
