[Git][security-tracker-team/security-tracker][master] 2 commits: Mark CVE-2024-6232/python2.7 as ignored.

Chris Lamb (@lamby) lamby at debian.org
Fri Sep 6 12:37:33 BST 2024 


Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker


Commits:
fa43ac87 by Chris Lamb at 2024-09-06T12:33:23+01:00
Mark CVE-2024-6232/python2.7 as ignored.

- - - - -
50aa7b97 by Chris Lamb at 2024-09-06T12:36:27+01:00
Triage CVE-2024-42934 in openipmi for bullseye LTS.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -824,6 +824,7 @@ CVE-2024-6232 (There is a MEDIUM severity vulnerability affecting CPython.
 	- python3.11 <removed>
 	- python3.9 <removed>
 	- python2.7 <removed>
+	[bullseye] - python2.7 <ignored> (Unsupported in Bullseye, only included to build a few applications)
 	NOTE: https://github.com/python/cpython/issues/121285
 	NOTE: https://github.com/python/cpython/pull/121286
 	NOTE: https://github.com/python/cpython/commit/ed3a49ea734ada357ff4442996fd4ae71d253373 (3.13-branch)
@@ -1297,6 +1298,7 @@ CVE-2024-8285 (A flaw was found in Kroxylicious. When establishing the connectio
 CVE-2024-42934
 	- openipmi <unfixed>
 	[bookworm] - openipmi <no-dsa> (Minor issue)
+	[bullseye] - openipmi <postponed> (Minor issue; can be fixed in next update)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2308375
 CVE-2024-8304 (A vulnerability has been found in jpress up to 5.1.1 and classified as ...)
 	NOT-FOR-US: jpress



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/cc76b9957cf924a180fce6a7716bfa540a8447fb...50aa7b9719be6fb6638969e632b09ea241d1b8cc

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/cc76b9957cf924a180fce6a7716bfa540a8447fb...50aa7b9719be6fb6638969e632b09ea241d1b8cc
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240906/4263a25c/attachment.htm>

More information about the debian-security-tracker-commits mailing list