[Git][security-tracker-team/security-tracker][master] Mark CVE-2024-23184/dovecot as <not-affected> for buster and stretch.

Guilhem Moulin (@guilhem) guilhem at debian.org
Sat Sep 7 02:11:35 BST 2024 


Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker


Commits:
76b11af4 by Guilhem Moulin at 2024-09-07T03:11:20+02:00
Mark CVE-2024-23184/dovecot as <not-affected> for buster and stretch.

With upstream's blessing, cf. https://dovecot.org/mailman3/archives/list/dovecot@dovecot.org/message/VW5M7S7BSUWOZZP5S5LNW6WMCWTXKVRB/

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -4916,6 +4916,8 @@ CVE-2024-23185
 CVE-2024-23184
 	{DSA-5752-1 DLA-3860-1}
 	- dovecot 1:2.3.21.1+dfsg1-1 (bug #1078876)
+	[buster] - dovecot <not-affected> (Vulnerable code not present)
+	[stretch] - dovecot <not-affected> (Vulnerable code not present)
 	NOTE: https://www.openwall.com/lists/oss-security/2024/08/15/3
 	NOTE: Fixed by: https://github.com/dovecot/core/commit/8e4c42dbb3c770fcdbc396f2abcf1bc228ec548d (2.3.21.1)
 	NOTE: Fixed by: https://github.com/dovecot/core/commit/cee08202c759a3bdf185d998dcf888ebd1bc6e36 (2.3.21.1)
@@ -4923,6 +4925,7 @@ CVE-2024-23184
 	NOTE: Fixed by: https://github.com/dovecot/core/commit/a1c9b0409454e45937bf7e9c3685f5e91d6a5a43 (2.3.21.1)
 	NOTE: Fixed by: https://github.com/dovecot/core/commit/da61d20311da34f22944c6111a0b97ea2a1f8a47 (2.3.21.1)
 	NOTE: Fixed by: https://github.com/dovecot/core/commit/1481c04f02df7647f520df65d63df7626bf0ee32 (2.3.21.1)
+	NOTE: Introduced by: https://github.com/dovecot/core/commit/469fcd3bdd7df40bb8f4d131121f3bfbceade02a (2.3.10)
 CVE-2024-7867 (In Xpdf 4.05 (and earlier), very large coordinates in a page box can c ...)
 	- xpdf <not-affected> (Debian uses poppler)
 CVE-2024-7866 (In Xpdf 4.05 (and earlier), a PDF object loop in a pattern resource le ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/76b11af482036fc8f3dd5f8a6c0992d33bc7de03

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/76b11af482036fc8f3dd5f8a6c0992d33bc7de03
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240907/d6cd2b5d/attachment.htm>

More information about the debian-security-tracker-commits mailing list