[Git][security-tracker-team/security-tracker][master] 2 commits: Add Debian bug reference for CVE-2024-21503/black
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Mar 19 19:19:01 GMT 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
c3e5b793 by Salvatore Bonaccorso at 2024-03-19T20:17:01+01:00
Add Debian bug reference for CVE-2024-21503/black
- - - - -
7a4fac4e by Salvatore Bonaccorso at 2024-03-19T20:18:29+01:00
Add Debian bug reference for CVE-2024-23333
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -103,7 +103,7 @@ CVE-2024-24043 (Directory Traversal vulnerability in Speedy11CZ MCRPX v.1.4.0 an
CVE-2024-24042 (Directory Traversal vulnerability in Devan-Kerman ARRP v.0.8.1 and bef ...)
NOT-FOR-US: Devan-Kerman ARRP
CVE-2024-23333 (LDAP Account Manager (LAM) is a webfrontend for managing entries store ...)
- - ldap-account-manager <unfixed>
+ - ldap-account-manager <unfixed> (bug #1067179)
NOTE: https://github.com/LDAPAccountManager/lam/security/advisories/GHSA-fm9w-7m7v-wxqv
CVE-2024-22453 (Dell PowerEdge Server BIOS contains a heap-based buffer overflow vulne ...)
NOT-FOR-US: Dell
@@ -114,7 +114,7 @@ CVE-2024-22412 (ClickHouse is an open-source column-oriented database management
CVE-2024-21504 (Versions of the package livewire/livewire from 3.3.5 and before 3.4.9 ...)
NOT-FOR-US: livewire
CVE-2024-21503 (Versions of the package black before 24.3.0 are vulnerable to Regular ...)
- - black <unfixed>
+ - black <unfixed> (bug #1067177)
NOTE: https://security.snyk.io/vuln/SNYK-PYTHON-BLACK-6256273
NOTE: https://github.com/psf/black/releases/tag/24.3.0
NOTE: https://github.com/psf/black/commit/f00093672628d212b8965a8993cee8bedf5fe9b8
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/e07a51853b77515a11306dbcdbb17fb23b3fa26c...7a4fac4e6c53cf19d27c1081e1086abe4d34b57a
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/e07a51853b77515a11306dbcdbb17fb23b3fa26c...7a4fac4e6c53cf19d27c1081e1086abe4d34b57a
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240319/8fa75c3a/attachment.htm>
More information about the debian-security-tracker-commits
mailing list