[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for trafficserver issues
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Nov 14 20:17:23 GMT 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
bacdb739 by Salvatore Bonaccorso at 2024-11-14T21:16:56+01:00
Add Debian bug reference for trafficserver issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -411,18 +411,18 @@ CVE-2024-11193 (An information disclosure vulnerability exists in Yugabyte Anywh
CVE-2024-10146 (The Simple File List WordPress plugin before 6.1.13 does not sanitise ...)
NOT-FOR-US: WordPress plugin
CVE-2024-50306 (Unchecked return value can allow Apache Traffic Server to retain privi ...)
- - trafficserver <unfixed>
+ - trafficserver <unfixed> (bug #1087531)
NOTE: https://www.openwall.com/lists/oss-security/2024/11/13/1
NOTE: https://github.com/apache/trafficserver/pull/11855
NOTE: https://github.com/apache/trafficserver/commit/27f504883547502b1f5e4e389edd7f26e3ab246f (9.2.6-rc0)
NOTE: https://github.com/apache/trafficserver/commit/ae638096e259121d92d46a9f57026a5ff5bc328b (master)
CVE-2024-38479 (Improper Input Validation vulnerability in Apache Traffic Server. Thi ...)
- - trafficserver <unfixed>
+ - trafficserver <unfixed> (bug #1087531)
NOTE: https://www.openwall.com/lists/oss-security/2024/11/13/1
NOTE: https://github.com/apache/trafficserver/pull/11856
NOTE: https://github.com/apache/trafficserver/commit/b8861231702ac5df7d5de401e82440c1cf20b633 (9.2.6-rc0)
CVE-2024-50305 (Valid Host header field can cause Apache Traffic Server to crash on so ...)
- - trafficserver <unfixed>
+ - trafficserver <unfixed> (bug #1087531)
NOTE: https://www.openwall.com/lists/oss-security/2024/11/13/1
NOTE: https://github.com/apache/trafficserver/issues/8461
NOTE: https://github.com/apache/trafficserver/commit/5e39658f7c0bc91613468c9513ba22ede1739d7e (9.2.6-rc0)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bacdb739b3c7856227093abc252ac3cd795a4c4d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bacdb739b3c7856227093abc252ac3cd795a4c4d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241114/650a9705/attachment.htm>
More information about the debian-security-tracker-commits
mailing list