[Git][security-tracker-team/security-tracker][master] bookworm triage

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
35d88ae3 by Moritz Muehlenhoff at 2024-09-25T22:48:29+02:00
bookworm triage

- - - - -


2 changed files:

- data/CVE/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -34707,17 +34707,23 @@ CVE-2023-49614 (Out of bounds write in firmware for some Intel(R) FPGA products
 	NOT-FOR-US: Intel
 CVE-2023-48727 (NULL pointer dereference in some Intel(R) oneVPL software before versi ...)
 	- intel-mediasdk <unfixed>
+	[bookworm] - intel-mediasdk <no-dsa> (Minor issue)
 	- onevpl <unfixed>
+	[bookworm] - onevpl <no-dsa> (Minor issue)
 	NOTE: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00935.html
 CVE-2023-48368 (Improper input validation in Intel(R) Media SDK software all versions  ...)
 	- intel-mediasdk <unfixed>
+	[bookworm] - intel-mediasdk <no-dsa> (Minor issue)
 	- onevpl <unfixed>
+	[bookworm] - onevpl <no-dsa> (Minor issue)
 	NOTE: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00935.html
 CVE-2023-47859 (Improper access control for some Intel(R) Wireless Bluetooth products  ...)
 	NOT-FOR-US: Intel
 CVE-2023-47282 (Out-of-bounds write in Intel(R) Media SDK all versions and some Intel( ...)
 	- intel-mediasdk <unfixed>
+	[bookworm] - intel-mediasdk <no-dsa> (Minor issue)
 	- onevpl <unfixed>
+	[bookworm] - onevpl <no-dsa> (Minor issue)
 	NOTE: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00935.html
 CVE-2023-47210 (Improper input validation for some Intel(R) PROSet/Wireless WiFi softw ...)
 	- firmware-nonfree 20240610-1
@@ -34726,7 +34732,9 @@ CVE-2023-47210 (Improper input validation for some Intel(R) PROSet/Wireless WiFi
 	NOTE: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01039.html
 CVE-2023-47169 (Improper buffer restrictions in Intel(R) Media SDK software all versio ...)
 	- intel-mediasdk <unfixed>
+	[bookworm] - intel-mediasdk <no-dsa> (Minor issue)
 	- onevpl <unfixed>
+	[bookworm] - onevpl <no-dsa> (Minor issue)
 	NOTE: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00935.html
 CVE-2023-47165 (Improper conditions check in the Intel(R) Data Center GPU Max Series 1 ...)
 	NOT-FOR-US: Intel


=====================================
data/dsa-needed.txt
=====================================
@@ -14,7 +14,7 @@ If needed, specify the release by adding a slash after the name of the source pa
 --
 activemq
 --
-booth
+booth (jmm)
   Adrian Bunk proposed an debdiff for review, cf. #1082674
 --
 chromium (dilinger)
@@ -22,8 +22,6 @@ chromium (dilinger)
 frr
   coordination with the maintainer ongoing
 --
-libreoffice (jmm)
---
 libreswan
   Waiting on feedback from maintainer
 --
@@ -44,8 +42,6 @@ python-reportlab
 --
 ring
 --
-setuptools
---
 smarty3
 --
 smarty4



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/35d88ae3fb989bcb4342280a55605eef8bfc6509

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/35d88ae3fb989bcb4342280a55605eef8bfc6509
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240925/f64b9280/attachment-0001.htm>