[Git][security-tracker-team/security-tracker][master] triage for older issues
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Mon Nov 4 16:57:32 GMT 2024
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0fb1c0ae by Moritz Muehlenhoff at 2024-11-04T17:57:24+01:00
triage for older issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -139772,7 +139772,7 @@ CVE-2023-0483 (An issue has been discovered in GitLab affecting all versions sta
CVE-2023-0482 (In RESTEasy the insecure File.createTempFile() is used in the DataSour ...)
- resteasy <unfixed> (bug #1031728)
- resteasy3.0 <unfixed> (bug #1031729)
- [bookworm] - resteasy3.0 <no-dsa> (Minor issue)
+ [bookworm] - resteasy3.0 <ignored> (Minor issue, no reverse deps in Bookworm)
[bullseye] - resteasy3.0 <no-dsa> (Minor issue)
[buster] - resteasy3.0 <no-dsa> (Minor issue)
NOTE: https://github.com/resteasy/resteasy/pull/3409/
@@ -282007,7 +282007,7 @@ CVE-2021-27212 (In OpenLDAP through 2.4.57 and 2.5.x through 2.5.1alpha, an asse
NOTE: REL_ENG 2.4.x: https://git.openldap.org/openldap/openldap/-/commit/9badb73425a67768c09bcaed1a9c26c684af6c30
CVE-2021-27211 (steghide 0.5.1 relies on a certain 32-bit seed value, which makes it e ...)
- steghide <unfixed> (bug #983267)
- [bookworm] - steghide <no-dsa> (Minor issue)
+ [bookworm] - steghide <postponed> (Minor issue, revisit when fixed upstream)
[bullseye] - steghide <no-dsa> (Minor issue)
[buster] - steghide <no-dsa> (Minor issue)
[stretch] - steghide <postponed> (Minor issue; can be fixed in next DLA)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0fb1c0ae27fa5891e8ed9e059b91e5954e0b17cf
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0fb1c0ae27fa5891e8ed9e059b91e5954e0b17cf
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241104/aaefc0ae/attachment.htm>
More information about the debian-security-tracker-commits
mailing list