[Git][security-tracker-team/security-tracker][master] Add CVE-2024-1753/golang-github-containers-buildah
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Mar 19 06:48:22 GMT 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
b26fffec by Salvatore Bonaccorso at 2024-03-19T07:42:01+01:00
Add CVE-2024-1753/golang-github-containers-buildah
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -216,7 +216,9 @@ CVE-2024-20746 (Premiere Pro versions 24.1, 23.6.2 and earlier are affected by a
CVE-2024-20745 (Premiere Pro versions 24.1, 23.6.2 and earlier are affected by a Heap- ...)
NOT-FOR-US: Adobe
CVE-2024-1753 (A flaw was found in Buildah (and subsequently Podman Build) which allo ...)
- TODO: check
+ - golang-github-containers-buildah <unfixed>
+ NOTE: https://github.com/containers/buildah/security/advisories/GHSA-pmf3-c36m-g5cf
+ TODO: check, at least podman will need a rebuild with a fixed buildah
CVE-2024-1658 (The Grid Shortcodes WordPress plugin before 1.1.1 does not validate an ...)
NOT-FOR-US: WordPress plugin
CVE-2024-1606 (Lack of input sanitization in BMC Control-M branches 9.0.20 and 9.0.2 ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b26fffec2fd6721a9afbb258706b612f9dba236e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b26fffec2fd6721a9afbb258706b612f9dba236e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240319/cb34c1d0/attachment.htm>
More information about the debian-security-tracker-commits
mailing list