[Git][security-tracker-team/security-tracker][master] triage older issues

Moritz Muehlenhoff (@jmm) jmm at debian.org
Wed Nov 20 08:11:20 GMT 2024 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f5f3dbd1 by Moritz Muehlenhoff at 2024-11-20T09:11:09+01:00
triage older issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -53699,7 +53699,7 @@ CVE-2023-6327 (The ShopLentor (formerly WooLentor) plugin for WordPress is vulne
 	NOT-FOR-US: WordPress plugin
 CVE-2024-33655 (The DNS protocol in RFC 1035 and updates allows remote attackers to ca ...)
 	- unbound 1.20.0-1
-	[bookworm] - unbound <no-dsa> (Minor issue)
+	[bookworm] - unbound <ignored> (Minor issue, too intrusive to backport)
 	[bullseye] - unbound <no-dsa> (Minor issue)
 	[buster] - unbound <ignored> (Not affected by DoS, intrusive changes)
 	NOTE: https://nlnetlabs.nl/downloads/unbound/CVE-2024-33655.txt
@@ -133675,13 +133675,13 @@ CVE-2023-28373 (A flaw exists in FlashArray Purity whereby an array administrato
 CVE-2023-28372 (A flaw exists in FlashBlade Purity (OE) Version 4.1.0 whereby a user w ...)
 	NOT-FOR-US: FlashBlade Purity
 CVE-2023-28371 (In Stellarium through 1.2, attackers can write to files that are typic ...)
-	- stellarium <unfixed> (bug #1034183)
-	[bookworm] - stellarium <no-dsa> (Minor issue)
+	- stellarium 23.3-1 (bug #1034183)
+	[bookworm] - stellarium <ignored> (Minor issue)
 	[bullseye] - stellarium <no-dsa> (Minor issue)
 	[buster] - stellarium <no-dsa> (Minor issue)
-	NOTE: https://github.com/Stellarium/stellarium/commit/1261f74dc4aa6bbd01ab514343424097f8cf46b7
-	NOTE: https://github.com/Stellarium/stellarium/commit/787a894897b7872ae96e6f5804a182210edd5c78
-	NOTE: https://github.com/Stellarium/stellarium/commit/eba61df3b38605befcb43687a4c0a159dbc0c5cb
+	NOTE: https://github.com/Stellarium/stellarium/commit/1261f74dc4aa6bbd01ab514343424097f8cf46b7 (v23.1)
+	NOTE: https://github.com/Stellarium/stellarium/commit/787a894897b7872ae96e6f5804a182210edd5c78 (v23.1)
+	NOTE: https://github.com/Stellarium/stellarium/commit/eba61df3b38605befcb43687a4c0a159dbc0c5cb (v23.1)
 CVE-2023-28368 (TP-Link L2 switch T2600G-28SQ firmware versions prior to 'T2600G-28SQ( ...)
 	NOT-FOR-US: TP-Link
 CVE-2023-28366 (The broker in Eclipse Mosquitto 1.3.2 through 2.x before 2.0.16 has a  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f5f3dbd193cab99e6208497dbf2755128782e875

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f5f3dbd193cab99e6208497dbf2755128782e875
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241120/fc9789d6/attachment.htm>

More information about the debian-security-tracker-commits mailing list