[Git][security-tracker-team/security-tracker][master] Add CVE-2024-2883{4,5}/gnutls28
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Mar 21 08:39:54 GMT 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
baf406aa by Salvatore Bonaccorso at 2024-03-21T09:39:12+01:00
Add CVE-2024-2883{4,5}/gnutls28
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -53,7 +53,17 @@ CVE-2024-29018 (Moby is an open source container framework that is a key compone
CVE-2024-28916 (Xbox Gaming Services Elevation of Privilege Vulnerability)
NOT-FOR-US: Microsoft
CVE-2024-28835 (A flaw has been discovered in GnuTLS where an application crash can be ...)
- TODO: check
+ - gnutls28 <unfixed>
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2269084
+ NOTE: https://gitlab.com/gnutls/gnutls/-/issues/1525
+ NOTE: https://gitlab.com/gnutls/gnutls/-/issues/1527
+ NOTE: https://lists.gnupg.org/pipermail/gnutls-help/2024-March/004845.html
+ NOTE: https://www.gnutls.org/security-new.html#GNUTLS-SA-2024-01-23
+CVE-2024-28834
+ - gnutls28 <unfixed>
+ NOTE: https://gitlab.com/gnutls/gnutls/-/issues/1516
+ NOTE: https://lists.gnupg.org/pipermail/gnutls-help/2024-March/004845.html
+ NOTE: https://www.gnutls.org/security-new.html#GNUTLS-SA-2023-12-04
CVE-2024-28635 (Cross Site Scripting (XSS) vulnerability in SurveyJS Survey Creator v. ...)
NOT-FOR-US: SurveyJS Survey Creator
CVE-2024-25294 (An SSRF issue in REBUILD v.3.5 allows a remote attacker to obtain sens ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/baf406aa5f8a6a3a31cfb5d832f77ce2f58791ae
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/baf406aa5f8a6a3a31cfb5d832f77ce2f58791ae
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240321/fd732f4b/attachment.htm>
More information about the debian-security-tracker-commits
mailing list