[Git][security-tracker-team/security-tracker][master] bouncycastle references
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Sat Nov 9 22:56:27 GMT 2024
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
1e35cc86 by Moritz Muehlenhoff at 2024-11-09T22:17:56+01:00
bouncycastle references
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -51091,15 +51091,16 @@ CVE-2024-29857 (An issue was discovered in ECCurve.java and ECCurve.cs in Bouncy
[bullseye] - bouncycastle <no-dsa> (Minor issue)
[buster] - bouncycastle <postponed> (Minor issue)
NOTE: https://github.com/bcgit/bc-java/issues/1635
- NOTE: https://www.bouncycastle.org/latest_releases.html
+ NOTE: https://github.com/bcgit/bc-java/wiki/CVE%E2%80%902024%E2%80%9029857
+ NOTE: https://github.com/bcgit/bc-java/commit/fee80dd230e7fba132d03a34f1dd1d6aae0d0281 (r1rv78v1)
CVE-2024-30172 (An issue was discovered in Bouncy Castle Java Cryptography APIs before ...)
- bouncycastle <unfixed> (bug #1070655)
[bookworm] - bouncycastle <no-dsa> (Minor issue)
[bullseye] - bouncycastle <no-dsa> (Minor issue)
[buster] - bouncycastle <postponed> (Minor issue)
NOTE: https://github.com/bcgit/bc-java/issues/1599
- NOTE: https://www.bouncycastle.org/latest_releases.html
NOTE: https://github.com/bcgit/bc-java/commit/9c165791b68a204678b48ec11e4e579754c2ea49 (r1rv78v1)
+ NOTE: https://github.com/bcgit/bc-java/wiki/CVE%E2%80%902024%E2%80%9030172
CVE-2024-34505
NOT-FOR-US: MediaWiki extension CheckUser
CVE-2024-34501
@@ -51438,7 +51439,9 @@ CVE-2024-34447 (An issue was discovered in Bouncy Castle Java Cryptography APIs
[bookworm] - bouncycastle <no-dsa> (Minor issue)
[bullseye] - bouncycastle <no-dsa> (Minor issue)
[buster] - bouncycastle <postponed> (Minor issue)
- NOTE: https://www.bouncycastle.org/latest_releases.html
+ NOTE: https://github.com/bcgit/bc-java/wiki/CVE%E2%80%902024%E2%80%9034447
+ NOTE: https://github.com/bcgit/bc-java/commit/c47f6444a744396135322784b5fea1d35d46a8a7 (r1rv78v1)
+ NOTE: https://github.com/bcgit/bc-java/issues/1656
CVE-2024-34446 (Mullvad VPN through 2024.1 on Android does not set a DNS server in the ...)
NOT-FOR-US: Mullvad VPN
CVE-2024-34408 (Tencent libpag through 4.3.51 has an integer overflow in DecodeStream: ...)
@@ -56026,7 +56029,9 @@ CVE-2024-30171 (An issue was discovered in Bouncy Castle Java TLS API and JSSE P
[bullseye] - bouncycastle <no-dsa> (Minor issue)
[buster] - bouncycastle <postponed> (Minor issue)
NOTE: https://github.com/bcgit/bc-java/issues/1528
- NOTE: https://www.bouncycastle.org/latest_releases.html
+ NOTE: https://github.com/bcgit/bc-java/wiki/CVE%E2%80%902024%E2%80%9030171
+ NOTE: https://github.com/bcgit/bc-java/commit/d7d5e735abd64bf0f413f54fd9e495fc02400fb0 (r1rv78v1)
+ NOTE: https://github.com/bcgit/bc-java/commit/e0569dcb1dea9d421d84fc4c5c5688fe101afa2d (r1rv77)
CVE-2024-4065 (A vulnerability was found in Tenda AC8 16.03.34.09. It has been rated ...)
NOT-FOR-US: Tenda
CVE-2024-4064 (A vulnerability was found in Tenda AC8 16.03.34.09. It has been declar ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1e35cc8662ba9c464ebb29880f148e081c0bae6e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1e35cc8662ba9c464ebb29880f148e081c0bae6e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241109/8926f226/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list