[Git][security-tracker-team/security-tracker][master] Reference commits for perl-CryptX and related commits in embedded libtomcrypt

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Mar 18 18:15:36 GMT 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e78c111b by Salvatore Bonaccorso at 2024-03-18T19:11:21+01:00
Reference commits for perl-CryptX and related commits in embedded libtomcrypt

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -184,7 +184,12 @@ CVE-2018-25099 (In the CryptX module before 0.062 for Perl, gcm_decrypt_verify()
 	- libcryptx-perl 0.062-1
 	NOTE: https://github.com/DCIT/perl-CryptX/issues/47
 	NOTE: https://github.com/libtom/libtomcrypt/pull/451
-	NOTE: https://metacpan.org/dist/CryptX/changes
+	NOTE: https://github.com/libtom/libtomcrypt/commit/2599618ca640bc5a506954f975be4109613366c6
+	NOTE: https://github.com/libtom/libtomcrypt/commit/27c472654c3fba983d74debad5a8fb21247f76db
+	NOTE: https://github.com/libtom/libtomcrypt/commit/fd4d8fbc0558157276229202d2883d01f7bd56d8
+	NOTE: https://github.com/libtom/libtomcrypt/commit/9a1131da144ee1f93ccbcaf032f39d783495d3b9
+	NOTE: https://github.com/libtom/libtomcrypt/commit/7d8567695bfb991c84f09d4d3aabc4568fa0c835
+	NOTE: Fixed by: https://github.com/DCIT/perl-CryptX/commit/23f75413c0262ad26d2d980f7fb4731bea595e59 (v0.062)
 CVE-2024-2566 (A vulnerability was found in Fujian Kelixin Communication Command and  ...)
 	NOT-FOR-US: Fujian Kelixin Communication Command and Dispatch Platform
 CVE-2024-2565 (A vulnerability was found in PandaXGO PandaX up to 20240310. It has be ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e78c111b15225e06f08c249c903ac589749538a0

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e78c111b15225e06f08c249c903ac589749538a0
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240318/e3476a57/attachment.htm>

More information about the debian-security-tracker-commits mailing list