[Git][security-tracker-team/security-tracker][master] bugnums

Moritz Muehlenhoff (@jmm) jmm at debian.org
Wed May 29 18:40:09 BST 2024 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9060e04b by Moritz Muehlenhoff at 2024-05-29T19:39:42+02:00
bugnums

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -20265,7 +20265,7 @@ CVE-2024-25690 (There is an HTML injection vulnerability in Esri Portal for ArcG
 CVE-2024-25007 (Ericsson Network Manager (ENM), versions prior to 23.1, contains a vul ...)
 	NOT-FOR-US: Ericsson Network Manager
 CVE-2024-22189 (quic-go is an implementation of the QUIC protocol in Go. Prior to vers ...)
-	- golang-github-lucas-clemente-quic-go <unfixed>
+	- golang-github-lucas-clemente-quic-go <unfixed> (bug #1072180)
 	[bookworm] - golang-github-lucas-clemente-quic-go <no-dsa> (Minor issue)
 	[bullseye] - golang-github-lucas-clemente-quic-go <no-dsa> (Minor issue)
 	NOTE: https://github.com/quic-go/quic-go/security/advisories/GHSA-c33x-xqrf-c478
@@ -26253,7 +26253,7 @@ CVE-2021-47157 (The Kossy module before 0.60 for Perl allows JSON hijacking beca
 CVE-2021-47156 (The Net::IPAddress::Util module before 5.000 for Perl does not properl ...)
 	NOT-FOR-US: Net::IPAddress::Util Perl module
 CVE-2021-47155 (The Net::IPV4Addr module 0.10 for Perl does not properly consider extr ...)
-	- libnetwork-ipv4addr-perl <unfixed>
+	- libnetwork-ipv4addr-perl <unfixed> (bug #1072178)
 	[bookworm] - libnetwork-ipv4addr-perl <no-dsa> (Minor issue)
 	[bullseye] - libnetwork-ipv4addr-perl <no-dsa> (Minor issue)
 	[buster] - libnetwork-ipv4addr-perl <postponed> (Minor issue, revisit when fix is available)
@@ -92257,7 +92257,7 @@ CVE-2023-27043 (The email module of Python through 3.11.3 incorrectly parses e-m
 	- python2.7 <removed>
 	[bullseye] - python2.7 <ignored> (Unsupported in Bullseye, only included to build a few applications)
 	[buster] - python2.7 <postponed> (Minor issue, wait until upstream has decided whether to backport to older branches)
-	- pypy3 <unfixed>
+	- pypy3 <unfixed> (bug #1072179)
 	[bookworm] - pypy3 <postponed> (Minor issue, wait until upstream has decided whether to backport to older branches)
 	[bullseye] - pypy3 <postponed> (Minor issue, wait until upstream has decided whether to backport to older branches)
 	[buster] - pypy3 <postponed> (Minor issue, wait until upstream has decided whether to backport to older branches)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9060e04b3db8dc720ac690cb137ff0030c11a7b6

-- 
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9060e04b3db8dc720ac690cb137ff0030c11a7b6
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240529/75eaebee/attachment.htm>

More information about the debian-security-tracker-commits mailing list