[Git][security-tracker-team/security-tracker][master] bullseye/bookworm triage

Moritz Muehlenhoff (@jmm) jmm at debian.org
Fri Mar 29 22:15:28 GMT 2024 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
acba346e by Moritz Mühlenhoff at 2024-03-29T22:59:06+01:00
bullseye/bookworm triage

- - - - -


2 changed files:

- data/CVE/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -1635,6 +1635,8 @@ CVE-2024-1745 (The Testimonial Slider WordPress plugin before 2.3.7 does not pro
 	NOT-FOR-US: WordPress plugin
 CVE-2024-0901 (Remotely executed SEGV and out of bounds read allows malicious packet  ...)
 	- wolfssl <unfixed> (bug #1067799)
+	[bookworm] - wolfssl <no-dsa> (Minor issue)
+	[bullseye] - wolfssl <no-dsa> (Minor issue)
 	NOTE: https://github.com/wolfSSL/wolfssl/issues/7089
 	NOTE: https://github.com/wolfSSL/wolfssl/pull/7099
 CVE-2024-0866 (The Check & Log Email plugin for WordPress is vulnerable to Unauthenti ...)
@@ -2102,9 +2104,8 @@ CVE-2024-2826 (A vulnerability classified as problematic was found in lakernote
 CVE-2024-2825 (A vulnerability classified as critical has been found in lakernote Eas ...)
 	NOT-FOR-US: lakernote EasyAdmin
 CVE-2024-2824 (A vulnerability was found in Matthias-Wandel jhead 3.08 and classified ...)
-	- jhead <unfixed>
-	[bookworm] - jhead <no-dsa> (Minor issue)
-	[bullseye] - jhead <no-dsa> (Minor issue)
+	- jhead <unfixed> (unimportant)
+	NOTE: Crash in CLI tool, no security impact
 	NOTE: https://github.com/Matthias-Wandel/jhead/issues/84
 CVE-2024-2823 (A vulnerability has been found in DedeCMS 5.7 and classified as proble ...)
 	NOT-FOR-US: DedeCMS


=====================================
data/dsa-needed.txt
=====================================
@@ -28,7 +28,7 @@ frr
 --
 gpac/oldstable
 --
-gtkwave
+gtkwave (jmm)
 --
 h2o (jmm)
 --
@@ -44,6 +44,8 @@ linux (carnil)
   Wait until more issues have piled up, though try to regulary rebase for point
   releases to more recent v5.10.y and 6.1.y versions
 --
+mediawiki (jmm)
+--
 nbconvert/oldstable
   Guilhem Moulin proposed an update ready for review
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/acba346ed18709fdbdadc105a41c26053c93f61e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/acba346ed18709fdbdadc105a41c26053c93f61e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240329/29a258c4/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list