[Git][security-tracker-team/security-tracker][master] DLA-4053-1 also fixes CVE-2024-32041.

Tobias Frost (@tobi) tobi at debian.org
Sat Feb 15 18:16:21 GMT 2025 


Tobias Frost pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5931d0a7 by Tobias Frost at 2025-02-15T19:16:08+01:00
DLA-4053-1 also fixes CVE-2024-32041.

The fix shares the same commit with CVE-2024-32039.

- - - - -


2 changed files:

- data/CVE/list
- data/DLA/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -85155,11 +85155,11 @@ CVE-2024-32041 (FreeRDP is a free implementation of the Remote Desktop Protocol.
 	- freerdp3 <not-affected> (Fixed with initial upload to Debian unstable)
 	- freerdp2 2.11.7+dfsg1-1 (bug #1069728)
 	[bookworm] - freerdp2 <no-dsa> (Minor issue)
-	[bullseye] - freerdp2 <no-dsa> (Minor issue)
 	[buster] - freerdp2 <postponed> (Minor issue)
 	NOTE: https://www.freerdp.com/2024/04/17/2_11_6-release
 	NOTE: https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-5r4p-mfx2-m44r
 	NOTE: https://github.com/FreeRDP/FreeRDP/commit/d88ad1acd142769650a6159906ac90f46a766265 (2.11.6)
+	NOTE: This is the same commit as for CVE-2024-32039.
 CVE-2024-32039 (FreeRDP is a free implementation of the Remote Desktop Protocol. FreeR ...)
 	- freerdp3 <not-affected> (Fixed with initial upload to Debian unstable)
 	- freerdp2 2.11.7+dfsg1-1 (bug #1069728)


=====================================
data/DLA/list
=====================================
@@ -1,5 +1,5 @@
 [15 Feb 2025] DLA-4053-1 freerdp2 - security update
-	{CVE-2021-41160 CVE-2022-24883 CVE-2022-39282 CVE-2022-39283 CVE-2022-39316 CVE-2022-39318 CVE-2022-39319 CVE-2022-39347 CVE-2022-41877 CVE-2023-39350 CVE-2023-39351 CVE-2023-39352 CVE-2023-39353 CVE-2023-39354 CVE-2023-39356 CVE-2023-40181 CVE-2023-40186 CVE-2023-40188 CVE-2023-40567 CVE-2023-40569 CVE-2023-40589 CVE-2024-22211 CVE-2024-32039 CVE-2024-32040 CVE-2024-32458 CVE-2024-32459 CVE-2024-32460 CVE-2024-32658 CVE-2024-32659 CVE-2024-32660 CVE-2024-32661}
+	{CVE-2021-41160 CVE-2022-24883 CVE-2022-39282 CVE-2022-39283 CVE-2022-39316 CVE-2022-39318 CVE-2022-39319 CVE-2022-39347 CVE-2022-41877 CVE-2023-39350 CVE-2023-39351 CVE-2023-39352 CVE-2023-39353 CVE-2023-39354 CVE-2023-39356 CVE-2023-40181 CVE-2023-40186 CVE-2023-40188 CVE-2023-40567 CVE-2023-40569 CVE-2023-40589 CVE-2024-22211 CVE-2024-32039 CVE-2024-32040 CVE-2024-32041 CVE-2024-32458 CVE-2024-32459 CVE-2024-32460 CVE-2024-32658 CVE-2024-32659 CVE-2024-32660 CVE-2024-32661}
 	[bullseye] - freerdp2 2.3.0+dfsg1-2+deb11u2
 [13 Feb 2025] DLA-4052-1 postgresql-13 - security update
 	{CVE-2025-1094}



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5931d0a785eb37a1d541eea238f6558d1c3fae0b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5931d0a785eb37a1d541eea238f6558d1c3fae0b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250215/18e0a7bf/attachment.htm>

More information about the debian-security-tracker-commits mailing list