[Git][security-tracker-team/security-tracker][master] mark libolm issues as ignored for bookworm
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Sun Sep 1 21:47:58 BST 2024
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
22f1b6a0 by Moritz Muehlenhoff at 2024-09-01T22:47:23+02:00
mark libolm issues as ignored for bookworm
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1505,19 +1505,25 @@ CVE-2024-45201 (An issue was discovered in llama_index before 0.10.38. download/
NOT-FOR-US: llama_index
CVE-2024-45193 (An issue was discovered in Matrix libolm through 3.2.16. There is Ed25 ...)
- olm <unfixed> (bug #1079487)
+ [bookworm] - olm <ignored> (Minor issue, libolm is deprecated and won't be fixed)
NOTE: https://soatok.blog/2024/08/14/security-issues-in-matrixs-olm-library/
NOTE: libolm is deprecated upstream:
NOTE: https://gitlab.matrix.org/matrix-org/olm/-/commit/6d4b5b07887821a95b144091c8497d09d377f985
+ NOTE: https://matrix.org/blog/2024/08/libolm-deprecation/
CVE-2024-45192 (An issue was discovered in Matrix libolm through 3.2.16. Cache-timing ...)
- olm <unfixed> (bug #1079487)
+ [bookworm] - olm <ignored> (Minor issue, libolm is deprecated and won't be fixed)
NOTE: https://soatok.blog/2024/08/14/security-issues-in-matrixs-olm-library/
NOTE: libolm is deprecated upstream:
NOTE: https://gitlab.matrix.org/matrix-org/olm/-/commit/6d4b5b07887821a95b144091c8497d09d377f985
+ NOTE: https://matrix.org/blog/2024/08/libolm-deprecation/
CVE-2024-45191 (An issue was discovered in Matrix libolm through 3.2.16. The AES imple ...)
- olm <unfixed> (bug #1079487)
+ [bookworm] - olm <ignored> (Minor issue, libolm is deprecated and won't be fixed)
NOTE: https://soatok.blog/2024/08/14/security-issues-in-matrixs-olm-library/
NOTE: libolm is deprecated upstream:
NOTE: https://gitlab.matrix.org/matrix-org/olm/-/commit/6d4b5b07887821a95b144091c8497d09d377f985
+ NOTE: https://matrix.org/blog/2024/08/libolm-deprecation/
CVE-2024-43787 (Hono is a Web application framework that provides support for any Java ...)
NOT-FOR-US: Hono
CVE-2024-43785 (gitoxide An idiomatic, lean, fast & safe pure Rust implementation of G ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/22f1b6a0fc19155fa9cc301fbb84c579871b351b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/22f1b6a0fc19155fa9cc301fbb84c579871b351b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240901/9d4a659e/attachment.htm>
More information about the debian-security-tracker-commits
mailing list