[Git][security-tracker-team/security-tracker][master] CVE-2024-24821
Bastien Roucariès (@rouca)
rouca at debian.org
Sat Mar 16 20:52:55 GMT 2024
Bastien Roucariès pushed to branch master at Debian Security Tracker / security-tracker
Commits:
8d90a5cd by Bastien Roucariès at 2024-03-16T20:51:51+00:00
CVE-2024-24821
InstalledVersion feature was created in 2.0 so buster is not affected
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -9105,6 +9105,7 @@ CVE-2024-24825 (DIRAC is a distributed resource framework. In affected versions
CVE-2024-24821 (Composer is a dependency Manager for the PHP language. In affected ver ...)
{DSA-5632-1}
- composer 2.7.1-1 (bug #1063603)
+ [buster] - composer <not-affected> (InstalledVersions feature is post version 2.0)
NOTE: https://github.com/composer/composer/security/advisories/GHSA-7c6p-848j-wh5h
NOTE: https://github.com/composer/composer/commit/64e4eb356b159a30c766cd1ea83450a38dc23bf5 (2.7.0)
CVE-2024-24820 (Icinga Director is a tool designed to make Icinga 2 configuration hand ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8d90a5cd98407e46d22b9ec57e18345ab90aafea
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8d90a5cd98407e46d22b9ec57e18345ab90aafea
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240316/bd0eaa5c/attachment.htm>
More information about the debian-security-tracker-commits
mailing list