[Git][security-tracker-team/security-tracker][master] Reference upstream tags for some upstream commits
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Jan 3 18:17:07 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
1cebf086 by Salvatore Bonaccorso at 2025-01-03T19:16:54+01:00
Reference upstream tags for some upstream commits
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -13924,40 +13924,40 @@ CVE-2024-10397 (A malicious server can crash the OpenAFS cache manager and other
- openafs 1.8.13-1 (bug #1087406; bug #1087407)
NOTE: http://openafs.org/pages/security/OPENAFS-SA-2024-003.txt
NOTE: https://lists.openafs.org/pipermail/openafs-devel/2024-November/020961.html
- NOTE: https://www.openafs.org/pages/security/openafs-sa-2024-003-stable16.patch (v1.6.25)
- NOTE: https://www.openafs.org/pages/security/openafs-sa-2024-003-stable18.patch (v1.8.13)
- NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=40440c3eb628ff1772588bdc99d7496292097bbd (v1.8.13)
- NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=c18640c6b98b10cd6f78c63195ff822689cb5348 (v1.8.13)
- NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=d253a52d3b59bd691eae8863ea2f06d99ad18550 (v1.8.13)
- NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=0ff2cd9e0f5656e8327c5fe47935998de3669678 (v1.8.13)
- NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=a82212ab20f0635a40c52648a52a1e9eaccc4937 (v1.8.13)
- NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=25ad3931d5c03ead625a96e6b626febeb3e20453 (v1.8.13)
- NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=4871f8ad2775e97bb85ff7efc33a4ad8d3f6d9d1 (v1.8.13)
- NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=37e585f0841803cdf3a1f99770034890ba162d7c (v1.8.13)
+ NOTE: https://www.openafs.org/pages/security/openafs-sa-2024-003-stable16.patch (openafs-stable-1_6_25)
+ NOTE: https://www.openafs.org/pages/security/openafs-sa-2024-003-stable18.patch (openafs-stable-1_8_13)
+ NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=40440c3eb628ff1772588bdc99d7496292097bbd (openafs-stable-1_8_13)
+ NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=c18640c6b98b10cd6f78c63195ff822689cb5348 (openafs-stable-1_8_13)
+ NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=d253a52d3b59bd691eae8863ea2f06d99ad18550 (openafs-stable-1_8_13)
+ NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=0ff2cd9e0f5656e8327c5fe47935998de3669678 (openafs-stable-1_8_13)
+ NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=a82212ab20f0635a40c52648a52a1e9eaccc4937 (openafs-stable-1_8_13)
+ NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=25ad3931d5c03ead625a96e6b626febeb3e20453 (openafs-stable-1_8_13)
+ NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=4871f8ad2775e97bb85ff7efc33a4ad8d3f6d9d1 (openafs-stable-1_8_13)
+ NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=37e585f0841803cdf3a1f99770034890ba162d7c (openafs-stable-1_8_13)
CVE-2024-10396 (An authenticated user can provide a malformed ACL to the fileserver's ...)
- openafs 1.8.13-1 (bug #1087406; bug #1087407)
NOTE: http://openafs.org/pages/security/OPENAFS-SA-2024-002.txt
NOTE: https://lists.openafs.org/pipermail/openafs-devel/2024-November/020961.html
- NOTE: https://www.openafs.org/pages/security/openafs-sa-2024-002-stable16.patch (v1.6.25)
- NOTE: https://www.openafs.org/pages/security/openafs-sa-2024-002-stable18.patch (v1.8.13)
- NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=a07e50726df09c49dfe7b953c3e49eb98f310c09 (v1.8.13)
- NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=f74f960a18f559e683d6a1f5104e43c3ca93ecb8 (v1.8.13)
- NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=1e6e813188ecce62eb7af19385d911f63469bdb6 (v1.8.13)
- NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=d66caf8c04878724001839317637445708edef2c (v1.8.13)
- NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=ee020f7cba7d82bc3d4b468210b5052af53c5db5 (v1.8.13)
- NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=bb01d76a2095baa65880bdc5d504e7a198958265 (v1.8.13)
- NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=64068705b15661a8d4e0b9f9f2ad4aec34ed51a7 (v1.8.13)
- NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=a96a3160f5425125588f39f5ac612df3ef9b9a8a (v1.8.13)
- NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=a9ede52673b8c8abbfc2577ac6987a8a5686206f (v1.8.13)
- NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=21941c0ab2d28fa3a074f46e4d448d518a7c1b8a (v1.8.13)
+ NOTE: https://www.openafs.org/pages/security/openafs-sa-2024-002-stable16.patch (openafs-stable-1_6_25)
+ NOTE: https://www.openafs.org/pages/security/openafs-sa-2024-002-stable18.patch (openafs-stable-1_8_13)
+ NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=a07e50726df09c49dfe7b953c3e49eb98f310c09 (openafs-stable-1_8_13)
+ NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=f74f960a18f559e683d6a1f5104e43c3ca93ecb8 (openafs-stable-1_8_13)
+ NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=1e6e813188ecce62eb7af19385d911f63469bdb6 (openafs-stable-1_8_13)
+ NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=d66caf8c04878724001839317637445708edef2c (openafs-stable-1_8_13)
+ NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=ee020f7cba7d82bc3d4b468210b5052af53c5db5 (openafs-stable-1_8_13)
+ NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=bb01d76a2095baa65880bdc5d504e7a198958265 (openafs-stable-1_8_13)
+ NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=64068705b15661a8d4e0b9f9f2ad4aec34ed51a7 (openafs-stable-1_8_13)
+ NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=a96a3160f5425125588f39f5ac612df3ef9b9a8a (openafs-stable-1_8_13)
+ NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=a9ede52673b8c8abbfc2577ac6987a8a5686206f (openafs-stable-1_8_13)
+ NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=21941c0ab2d28fa3a074f46e4d448d518a7c1b8a (openafs-stable-1_8_13)
CVE-2024-10394 (A local user can bypass the OpenAFS PAG (Process Authentication Group) ...)
- openafs 1.8.13-1 (bug #1087406; bug #1087407)
NOTE: http://openafs.org/pages/security/OPENAFS-SA-2024-001.txt
NOTE: https://lists.openafs.org/pipermail/openafs-devel/2024-November/020961.html
- NOTE: https://www.openafs.org/pages/security/openafs-sa-2024-001-stable16.patch (v1.6.26)
- NOTE: https://www.openafs.org/pages/security/openafs-sa-2024-001-stable18.patch (v1.8.13)
- NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=20c22347b41eea2ebbdc0ab15f16c822af44df51 (v1.8.13)
- NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=57b655e4837d8660ebcc25d95efb09118adaff07 (v1.8.13)
+ NOTE: https://www.openafs.org/pages/security/openafs-sa-2024-001-stable16.patch (openafs-stable-1_6_25)
+ NOTE: https://www.openafs.org/pages/security/openafs-sa-2024-001-stable18.patch (openafs-stable-1_8_13)
+ NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=20c22347b41eea2ebbdc0ab15f16c822af44df51 (openafs-stable-1_8_13)
+ NOTE: http://git.openafs.org/?p=openafs.git;a=commit;h=57b655e4837d8660ebcc25d95efb09118adaff07 (openafs-stable-1_8_13)
CVE-2024-9999 (In WS_FTP Server versions before 8.8.9 (2022.0.9), an Incorrect Implem ...)
NOT-FOR-US: Progress WS_FTP Server
CVE-2024-9998
@@ -402137,24 +402137,24 @@ CVE-2019-18601 (OpenAFS before 1.6.24 and 1.8.x before 1.8.5 is prone to denial
[buster] - openafs <no-dsa> (Minor issue)
[stretch] - openafs <no-dsa> (Minor issue)
NOTE: http://openafs.org/pages/security/OPENAFS-SA-2019-003.txt
- NOTE: https://www.openafs.org/pages/security/openafs-sa-2019-003-stable16.patch (v1.6.24)
- NOTE: https://www.openafs.org/pages/security/openafs-sa-2019-003-stable18.patch (v1.8.5)
+ NOTE: https://www.openafs.org/pages/security/openafs-sa-2019-003-stable16.patch (openafs-stable-1_6_24)
+ NOTE: https://www.openafs.org/pages/security/openafs-sa-2019-003-stable18.patch (openafs-stable-1_8_5)
CVE-2019-18602 (OpenAFS before 1.6.24 and 1.8.x before 1.8.5 is prone to an informatio ...)
{DLA-1982-1}
- openafs 1.8.5-1 (low; bug #943587)
[buster] - openafs <no-dsa> (Minor issue)
[stretch] - openafs <no-dsa> (Minor issue)
NOTE: http://openafs.org/pages/security/OPENAFS-SA-2019-002.txt
- NOTE: https://www.openafs.org/pages/security/openafs-sa-2019-002-stable16.patch (v1.6.24)
- NOTE: https://www.openafs.org/pages/security/openafs-sa-2019-002-stable18.patch (v1.8.5)
+ NOTE: https://www.openafs.org/pages/security/openafs-sa-2019-002-stable16.patch (openafs-stable-1_6_24)
+ NOTE: https://www.openafs.org/pages/security/openafs-sa-2019-002-stable18.patch (openafs-stable-1_8_5)
CVE-2019-18603 (OpenAFS before 1.6.24 and 1.8.x before 1.8.5 is prone to information l ...)
{DLA-1982-1}
- openafs 1.8.5-1 (low; bug #943587)
[buster] - openafs <no-dsa> (Minor issue)
[stretch] - openafs <no-dsa> (Minor issue)
NOTE: http://openafs.org/pages/security/OPENAFS-SA-2019-001.txt
- NOTE: https://www.openafs.org/pages/security/openafs-sa-2019-001-stable16.patch (v1.6.24)
- NOTE: https://www.openafs.org/pages/security/openafs-sa-2019-001-stable18.patch (v1.8.5)
+ NOTE: https://www.openafs.org/pages/security/openafs-sa-2019-001-stable16.patch (openafs-stable-1_6_24)
+ NOTE: https://www.openafs.org/pages/security/openafs-sa-2019-001-stable18.patch (openafs-stable-1_8_5)
CVE-2019-18465 (In Progress MOVEit Transfer 11.1 before 11.1.3, a vulnerability has be ...)
NOT-FOR-US: Progress MOVEit Transfer
CVE-2019-18464 (In Progress MOVEit Transfer 10.2 before 10.2.6 (2018.3), 11.0 before 1 ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1cebf08685d1bed19fa0d068df9f4668f2f55221
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1cebf08685d1bed19fa0d068df9f4668f2f55221
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250103/3ab5b53b/attachment.htm>
More information about the debian-security-tracker-commits
mailing list