[Git][security-tracker-team/security-tracker][master] Reserve DLA-3940-1 for xorg-server
Thorsten Alteholz (@alteholz)
alteholz at debian.org
Tue Oct 29 18:17:39 GMT 2024
Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker
Commits:
9432b304 by Thorsten Alteholz at 2024-10-29T19:17:24+01:00
Reserve DLA-3940-1 for xorg-server
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -98618,15 +98618,6 @@ CVE-2023-42116 (Exim SMTP Challenge Stack-based Buffer Overflow Remote Code Exec
NOTE: https://exim.org/static/doc/security/CVE-2023-zdi.txt
CVE-2023-42115 (Exim AUTH Out-Of-Bounds Write Remote Code Execution Vulnerability. Thi ...)
{DSA-5512-1}
-
- - exim4 4.97~RC1-2
- [buster] - exim4 <not-affected> (External authenticator support was introduced later)
- NOTE: https://www.zerodayinitiative.com/advisories/ZDI-23-1469/
- NOTE: https://bugs.exim.org/show_bug.cgi?id=2999
- NOTE: https://git.exim.org/exim.git/log/refs/heads/exim-4.96%20security/exim.git/commit/955f1203c15be96fa84b5331fa2a5cb2e556b9a9 (exim-4.96.1)
- NOTE: https://www.openwall.com/lists/oss-security/2023/09/29/5
- NOTE: https://www.openwall.com/lists/oss-security/2023/10/01/4
- NOTE: https://exim.org/static/doc/security/CVE-2023-zdi.txt
CVE-2023-42114 (Exim NTLM Challenge Out-Of-Bounds Read Information Disclosure Vulnerab ...)
{DSA-5512-1 DLA-3599-1}
- exim4 4.97~RC1-2
=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[29 Oct 2024] DLA-3940-1 xorg-server - security update
+ {CVE-2024-9632}
+ [bullseye] - xorg-server 2:1.20.11-1+deb11u14
[29 Oct 2024] DLA-3939-1 python-git - security update
{CVE-2022-24439 CVE-2023-40267 CVE-2023-41040}
[bullseye] - python-git 3.1.14-1+deb11u1
=====================================
data/dla-needed.txt
=====================================
@@ -204,6 +204,3 @@ upx-ucl
webkit2gtk (Emilio)
NOTE: 20240926: Added by Front-Desk (lamby)
--
-xorg-server (Thorsten Alteholz)
- NOTE: 20241029: Added embargoed issue (ta)
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9432b3045d5f0ff7607e2fd67d77747eb3eebb30
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9432b3045d5f0ff7607e2fd67d77747eb3eebb30
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241029/323be9a1/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list