[Git][security-tracker-team/security-tracker][master] Fix tracking for CVE-2024-53008/haproxy

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Nov 28 20:47:32 GMT 2024



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6d5fa434 by Salvatore Bonaccorso at 2024-11-28T21:47:04+01:00
Fix tracking for CVE-2024-53008/haproxy

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -126,9 +126,8 @@ CVE-2024-53858 (The gh cli is GitHub\u2019s official command line tool. A securi
 CVE-2024-53260 (Autolab is a course management service that enables auto-graded progra ...)
 	NOT-FOR-US: Autolab
 CVE-2024-53008 (Inconsistent interpretation of HTTP requests ('HTTP Request/Response S ...)
-	- haproxy 2.9.9-1
-	NOTE: Fixed in HAProxy 2.6.18, 2.8.10, 2.9.9 and 3.0.2
-	TODO: Pinpoint fixes
+	- haproxy 2.9.10-1
+	NOTE: Fixed in HAProxy 2.6.19, 2.8.11, 2.9.10 and 3.0.3
 CVE-2024-46939 (The game extension engine of versions 1.2.7.0 and earlier exposes some ...)
 	NOT-FOR-US: Vivo
 CVE-2024-38658 (There is an Out-of-bounds read vulnerability in V-Server (v4.0.19.0 an ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6d5fa43438c0b14519b9264c9cbfc3e5c65f3ddd

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6d5fa43438c0b14519b9264c9cbfc3e5c65f3ddd
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241128/c36b5acb/attachment.htm>


More information about the debian-security-tracker-commits mailing list