[Git][security-tracker-team/security-tracker][master] Mark phpseclib issues as no-dsa for bullseye and bookworm
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Mar 1 07:33:01 GMT 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
97459373 by Salvatore Bonaccorso at 2024-03-01T08:32:17+01:00
Mark phpseclib issues as no-dsa for bullseye and bookworm
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1388,13 +1388,23 @@ CVE-2023-48678 (Sensitive information disclosure due to insecure folder permissi
NOT-FOR-US: Acronis
CVE-2024-27354
- phpseclib 1.0.23-1
+ [bookworm] - phpseclib <no-dsa> (Minor issue; can be fixed via pu)
+ [bullseye] - phpseclib <no-dsa> (Minor issue; can be fixed via pu)
- php-phpseclib 2.0.47-1
+ [bookworm] - php-phpseclib <no-dsa> (Minor issue; can be fixed via pu)
+ [bullseye] - php-phpseclib <no-dsa> (Minor issue; can be fixed via pu)
- php-phpseclib3 3.0.36-1
+ [bookworm] - php-phpseclib3 <no-dsa> (Minor issue; can be fixed via pu)
NOTE: https://github.com/phpseclib/phpseclib/commit/ad5dbdf2129f5e0fb644637770b7f33de8ca8575
CVE-2024-27355
- phpseclib 1.0.23-1
+ [bookworm] - phpseclib <no-dsa> (Minor issue; can be fixed via pu)
+ [bullseye] - phpseclib <no-dsa> (Minor issue; can be fixed via pu)
- php-phpseclib 2.0.47-1
+ [bookworm] - php-phpseclib <no-dsa> (Minor issue; can be fixed via pu)
+ [bullseye] - php-phpseclib <no-dsa> (Minor issue; can be fixed via pu)
- php-phpseclib3 3.0.36-1
+ [bookworm] - php-phpseclib3 <no-dsa> (Minor issue; can be fixed via pu)
NOTE: https://github.com/phpseclib/phpseclib/commit/e32531001b4d62c66c3d824ccef54ffad835eb59
CVE-2023-50379 (Malicious code injection in Apache Ambari in prior to 2.7.8.Users are ...)
NOT-FOR-US: Apache Ambari
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/974593738f4fdbb3860f60b1ceecb9b35b30db6b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/974593738f4fdbb3860f60b1ceecb9b35b30db6b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240301/0c883f8e/attachment.htm>
More information about the debian-security-tracker-commits
mailing list