[Git][security-tracker-team/security-tracker][master] Update status for CVE-2024-51988/rabbitmq-server

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9e0d00bc by Salvatore Bonaccorso at 2024-11-10T20:43:45+01:00
Update status for CVE-2024-51988/rabbitmq-server

Information is a bit scarce, but upstream advisory at least hints on
that for the 3.12.y series affected versions start at 3.12.7 at least.

Tracking is not fully satisfactory in this case, so peer review very
welcome.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1189,7 +1189,7 @@ CVE-2024-8614 (The JobSearch WP Job Board plugin for WordPress is vulnerable to
 CVE-2024-8323 (The Pricing Tables WordPress Plugin \u2013 Easy Pricing Tables plugin  ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2024-51988 (RabbitMQ is a feature rich, multi-protocol messaging and streaming bro ...)
-	- rabbitmq-server <unfixed>
+	- rabbitmq-server <not-affected> (Vulnerable code introduced later)
 	NOTE: https://github.com/rabbitmq/rabbitmq-server/security/advisories/GHSA-pj33-75x5-32j4
 CVE-2024-51757 (happy-dom is a JavaScript implementation of a web browser without its  ...)
 	NOT-FOR-US: happy-dom



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9e0d00bcf72123f33e677ad8555d19d274a592fa

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9e0d00bcf72123f33e677ad8555d19d274a592fa
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241110/1951e944/attachment.htm>