[Git][security-tracker-team/security-tracker][master] Track fixed version for azure-uamqp-python issues

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sun Mar 10 19:49:15 GMT 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
da44f932 by Salvatore Bonaccorso at 2024-03-10T20:48:25+01:00
Track fixed version for azure-uamqp-python issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3361,7 +3361,7 @@ CVE-2024-27507 (libLAS 1.8.1 contains a memory leak vulnerability in /libLAS/app
 	- liblas <removed>
 	[buster] - liblas <no-dsa> (Minor issue)
 CVE-2024-27099 (The uAMQP is a C library for AMQP 1.0 communication to Azure Cloud Ser ...)
-	- azure-uamqp-python <unfixed> (bug #1064996)
+	- azure-uamqp-python 1.6.8-2 (bug #1064996)
 	NOTE: https://github.com/Azure/azure-uamqp-c/security/advisories/GHSA-6rh4-fj44-v4jj
 	NOTE: https://github.com/Azure/azure-uamqp-c/commit/2ca42b6e4e098af2d17e487814a91d05f6ae4987
 CVE-2024-26473 (A reflected cross-site scripting (XSS) vulnerability in SocialMediaWeb ...)
@@ -6843,7 +6843,7 @@ CVE-2024-25112 (Exiv2 is a command-line utility and C++ library for reading, wri
 	NOTE: it was removed and later reintroduced. The 0.27-maintenance branch _does_ include
 	NOTE: the Quicktime decoder
 CVE-2024-25110 (The UAMQP is a general purpose C library for AMQP 1.0. During a call t ...)
-	- azure-uamqp-python <unfixed> (bug #1064051)
+	- azure-uamqp-python 1.6.8-2 (bug #1064051)
 	NOTE: https://github.com/Azure/azure-uamqp-c/commit/30865c9ccedaa32ddb036e87a8ebb52c3f18f695
 	NOTE: https://github.com/Azure/azure-uamqp-c/security/advisories/GHSA-c646-4whf-r67v
 	NOTE: https://github.com/Azure/azure-uamqp-python/issues/380



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/da44f93230cfef191f29f2e2d2a6fd8972f05ce0

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/da44f93230cfef191f29f2e2d2a6fd8972f05ce0
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240310/85ad81fd/attachment.htm>

More information about the debian-security-tracker-commits mailing list