[Git][security-tracker-team/security-tracker][master] CVE-2024-52522/rclone does not affect <= bullseye

Adrian Bunk (@bunk) bunk at debian.org
Tue Nov 26 21:30:51 GMT 2024 


Adrian Bunk pushed to branch master at Debian Security Tracker / security-tracker


Commits:
abc313e5 by Adrian Bunk at 2024-11-26T23:30:05+02:00
CVE-2024-52522/rclone does not affect <= bullseye

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -3366,6 +3366,7 @@ CVE-2024-52523 (Nextcloud Server is a self hosted personal cloud system. After s
 CVE-2024-52522 (Rclone is a command-line program to sync files and directories to and  ...)
 	- rclone <unfixed> (bug #1088107)
 	[bookworm] - rclone <no-dsa> (Minor issue)
+	[bullseye] - rclone <not-affected> (--metadata added in 1.59.0)
 	NOTE: https://github.com/rclone/rclone/security/advisories/GHSA-hrxh-9w67-g4cv
 	NOTE: https://github.com/rclone/rclone/commit/01ccf204f42b4f68541b16843292439090a2dcf0 (master)
 	NOTE: https://github.com/rclone/rclone/commit/669b2f2669cacd634faa2bcecb589b76e1402533 (v1.68.2)


=====================================
data/dla-needed.txt
=====================================
@@ -173,9 +173,6 @@ qemu
   NOTE: 20240815: CVE-2024-4467 fix also proposed for 12.7 (https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1076504)
   NOTE: 20241119: Bookworm PU in progress https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1086572
 --
-rclone
-  NOTE: 20241125: Added by Front-Desk (ta)
---
 redis (Adrian Bunk)
   NOTE: 20241020: Added by Front-Desk (santiago)
   NOTE: 20241020: Ideally sync with a bookworm update please (santiago/front-desk)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/abc313e57a125e879c338eb3ef4868d31ccdbf2a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/abc313e57a125e879c338eb3ef4868d31ccdbf2a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241126/a434cbaf/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list