[Git][security-tracker-team/security-tracker][master] nghttp2 spu
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Sun Sep 29 10:44:17 BST 2024
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
04d7e362 by Moritz Muehlenhoff at 2024-09-29T11:43:53+02:00
nghttp2 spu
- - - - -
2 changed files:
- data/CVE/list
- data/next-point-update.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -50464,6 +50464,7 @@ CVE-2024-30255 (Envoy is a cloud-native, open source edge and service proxy. The
CVE-2024-28182 (nghttp2 is an implementation of the Hypertext Transfer Protocol versio ...)
{DLA-3898-1 DLA-3804-1}
- nghttp2 1.61.0-1 (bug #1068415)
+ [bookworm] - nghttp2 <no-dsa> (Minor issue)
NOTE: https://github.com/nghttp2/nghttp2/security/advisories/GHSA-x6x3-gv8h-m57q
NOTE: https://www.kb.cert.org/vuls/id/421644
NOTE: https://github.com/nghttp2/nghttp2/commit/00201ecd8f982da3b67d4f6868af72a1b03b14e0 (v1.61.0)
=====================================
data/next-point-update.txt
=====================================
@@ -82,3 +82,5 @@ CVE-2023-50868
[bookworm] - dnsmasq 2.90-4~deb12u1
CVE-2023-47480
[bookworm] - puredata 0.53.1+ds-2+deb12u1
+CVE-2024-28182
+ [bookworm] - nghttp2 1.52.0-1+deb12u2
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/04d7e362c74b85e4ecf93cba5cb52e11e9ccdd03
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/04d7e362c74b85e4ecf93cba5cb52e11e9ccdd03
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240929/e53e0a80/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list