[Git][security-tracker-team/security-tracker][master] 2 commits: Mark golang-github-crewjam-saml as removed from unstable
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Oct 21 20:23:18 BST 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
77418e5b by Salvatore Bonaccorso at 2024-10-21T21:22:29+02:00
Mark golang-github-crewjam-saml as removed from unstable
- - - - -
f661fe8a by Salvatore Bonaccorso at 2024-10-21T21:22:53+02:00
Mark golang-github-crewjam-saml as removed from every supported suite
- - - - -
2 changed files:
- data/CVE/list
- data/packages/removed-packages
Changes:
=====================================
data/CVE/list
=====================================
@@ -92980,7 +92980,7 @@ CVE-2023-45686 (Insufficient path validation when writing a file via WebDAV in S
CVE-2023-45685 (Insufficient path validation when extracting a zip archive in South Ri ...)
NOT-FOR-US: South River Technologies
CVE-2023-45683 (github.com/crewjam/saml is a saml library for the go language. In affe ...)
- - golang-github-crewjam-saml <unfixed> (bug #1054223)
+ - golang-github-crewjam-saml <removed> (bug #1054223)
NOTE: https://github.com/crewjam/saml/security/advisories/GHSA-267v-3v32-g6q5
NOTE: https://github.com/crewjam/saml/commit/b07b16cf83c4171d16da4d85608cb827f183cd79 (v0.4.14)
CVE-2023-45669 (WebAuthn4J Spring Security provides Web Authentication specification s ...)
@@ -124882,7 +124882,7 @@ CVE-2023-1348
CVE-2023-1347 (The Customizer Export/Import WordPress plugin before 0.9.6 unserialize ...)
NOT-FOR-US: WordPress plugin
CVE-2023-28119 (The crewjam/saml go library contains a partial implementation of the S ...)
- - golang-github-crewjam-saml <unfixed> (bug #1033753)
+ - golang-github-crewjam-saml <removed> (bug #1033753)
NOTE: https://github.com/crewjam/saml/commit/8e9236867d176ad6338c870a84e2039aef8a5021 (v0.4.13)
NOTE: https://github.com/crewjam/saml/security/advisories/GHSA-5mqj-xc49-246p
CVE-2023-28118 (kaml provides YAML support for kotlinx.serialization. Prior to version ...)
=====================================
data/packages/removed-packages
=====================================
@@ -1070,3 +1070,4 @@ vncterm
yap
mozillavpn
matrix-sydent
+golang-github-crewjam-saml
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/d98e011dfe85eb90d85062f97cf170d566418600...f661fe8a29b6537cf9ec728076a02285f021b8d2
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/d98e011dfe85eb90d85062f97cf170d566418600...f661fe8a29b6537cf9ec728076a02285f021b8d2
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241021/54b2c2f3/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list