[Git][security-tracker-team/security-tracker][master] Add CVE-2024-3657/389-ds-base

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue May 28 21:42:58 BST 2024



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
03284306 by Salvatore Bonaccorso at 2024-05-28T22:42:14+02:00
Add CVE-2024-3657/389-ds-base

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -19,7 +19,9 @@ CVE-2024-4429 (Cross-Site Request Forgery vulnerabilityhas been discovered in Op
 CVE-2024-3969 (XML External Entity injection vulnerability foundin OpenText\u2122 iMa ...)
 	NOT-FOR-US: OpenText iManager
 CVE-2024-3657 (A flaw was found in 389-ds-base. A specially-crafted LDAP query can po ...)
-	TODO: check
+	- 389-ds-base <unfixed>
+	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2274401
+	TODO: check provided details
 CVE-2024-36472 (In GNOME Shell through 45.7, a portal helper can be launched automatic ...)
 	- gnome-shell <unfixed>
 	NOTE: https://gitlab.gnome.org/GNOME/gnome-shell/-/issues/7688



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/03284306e27f50d0150be67583e40b75f3867135

-- 
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/03284306e27f50d0150be67583e40b75f3867135
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240528/045150a0/attachment.htm>


More information about the debian-security-tracker-commits mailing list