[Git][security-tracker-team/security-tracker][master] Add CVE-2024-4317/postgresql-15
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu May 9 19:50:40 BST 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
2e05af68 by Salvatore Bonaccorso at 2024-05-09T20:49:42+02:00
Add CVE-2024-4317/postgresql-15
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,10 @@
+CVE-2024-4317 [Restrict visibility of "pg_stats_ext" and "pg_stats_ext_exprs" entries to the table owner]
+ - postgresql-16 16.3-1
+ - postgresql-15 <removed>
+ [bookworm] - postgresql-15 <no-dsa> (Minor issue; can be fixed via point release)
+ - postgresql-13 <not-affected> (Vulnerable code not present)
+ - postgresql-11 <not-affected> (Vulnerable code not present)
+ NOTE: https://www.postgresql.org/support/security/CVE-2024-4317/
CVE-2024-4672 (A vulnerability classified as problematic was found in Campcodes Compl ...)
NOT-FOR-US: Campcodes Complete Web-Based School Management System
CVE-2024-4597 (An issue has been discovered in GitLab EE affecting all versions from ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2e05af6870eb48326b8321d93f2719233be35855
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2e05af6870eb48326b8321d93f2719233be35855
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240509/eb0fb826/attachment.htm>
More information about the debian-security-tracker-commits
mailing list