[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for bouncycastle issues
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon May 6 17:03:13 BST 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
1dce59a8 by Salvatore Bonaccorso at 2024-05-06T18:02:08+02:00
Add Debian bug reference for bouncycastle issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,11 +1,11 @@
CVE-2024-29857
- - bouncycastle <unfixed>
+ - bouncycastle <unfixed> (bug #1070655)
[bookworm] - bouncycastle <no-dsa> (Minor issue)
[bullseye] - bouncycastle <no-dsa> (Minor issue)
NOTE: https://github.com/bcgit/bc-java/issues/1635
NOTE: https://www.bouncycastle.org/latest_releases.html
CVE-2024-30172
- - bouncycastle <unfixed>
+ - bouncycastle <unfixed> (bug #1070655)
[bookworm] - bouncycastle <no-dsa> (Minor issue)
[bullseye] - bouncycastle <no-dsa> (Minor issue)
NOTE: https://github.com/bcgit/bc-java/issues/1599
@@ -335,7 +335,7 @@ CVE-2024-34453 (TwoNav 2.1.13 contains an SSRF vulnerability via the url paramat
CVE-2024-34449 (Vditor 3.10.3 allows XSS via an attribute of an A element. NOTE: the v ...)
NOT-FOR-US: Vditor
CVE-2024-34447 (An issue was discovered in Bouncy Castle Java Cryptography APIs before ...)
- - bouncycastle <unfixed>
+ - bouncycastle <unfixed> (bug #1070655)
[bookworm] - bouncycastle <no-dsa> (Minor issue)
[bullseye] - bouncycastle <no-dsa> (Minor issue)
NOTE: https://www.bouncycastle.org/latest_releases.html
@@ -4735,7 +4735,7 @@ CVE-2024-25583 (A crafted response from an upstream server the recursor has been
CVE-2024-3154 (A flaw was found in cri-o, where an arbitrary systemd property can be ...)
- cri-o <itp> (bug #979702)
CVE-2024-30171
- - bouncycastle <unfixed>
+ - bouncycastle <unfixed> (bug #1070655)
[bookworm] - bouncycastle <no-dsa> (Minor issue)
[bullseye] - bouncycastle <no-dsa> (Minor issue)
[buster] - bouncycastle <postponed> (Minor issue)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1dce59a8b600097f66da38d8f8c86bc3d9ff315a
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1dce59a8b600097f66da38d8f8c86bc3d9ff315a
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240506/ecc811ab/attachment.htm>
More information about the debian-security-tracker-commits
mailing list