[Git][security-tracker-team/security-tracker][master] add ofono commit references
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Mon Jan 6 08:08:59 GMT 2025
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a6c84e7c by Moritz Muehlenhoff at 2025-01-06T09:08:31+01:00
add ofono commit references
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -39592,46 +39592,55 @@ CVE-2024-7547 (oFono SMS Decoder Stack-based Buffer Overflow Privilege Escalatio
[bookworm] - ofono <postponed> (Revisit when/if fixed upstream)
[bullseye] - ofono <postponed> (Revisit when/if fixed upstream)
NOTE: https://www.zerodayinitiative.com/advisories/ZDI-24-1087/
+ NOTE: https://git.kernel.org/pub/scm/network/ofono/ofono.git/commit/?id=305df050d02aea8532f7625d6642685aa530f9b0
CVE-2024-7546 (oFono SimToolKit Heap-based Buffer Overflow Privilege Escalation Vulne ...)
- ofono 2.14-1 (bug #1078555)
[bookworm] - ofono <postponed> (Revisit when/if fixed upstream)
[bullseye] - ofono <postponed> (Revisit when/if fixed upstream)
NOTE: https://www.zerodayinitiative.com/advisories/ZDI-24-1086/
+ NOTE: https://git.kernel.org/pub/scm/network/ofono/ofono.git/commit/?id=79ea6677669e50b0bb9c231765adb4f81c375f63
CVE-2024-7545 (oFono SimToolKit Heap-based Buffer Overflow Privilege Escalation Vulne ...)
- ofono 2.14-1 (bug #1078555)
[bookworm] - ofono <postponed> (Revisit when/if fixed upstream)
[bullseye] - ofono <postponed> (Revisit when/if fixed upstream)
NOTE: https://www.zerodayinitiative.com/advisories/ZDI-24-1085/
+ NOTE: https://git.kernel.org/pub/scm/network/ofono/ofono.git/commit/?id=556e14548c38c2b96d85881542046ee7ed750bb5
CVE-2024-7544 (oFono SimToolKit Heap-based Buffer Overflow Privilege Escalation Vulne ...)
- ofono 2.14-1 (bug #1078555)
[bookworm] - ofono <postponed> (Revisit when/if fixed upstream)
[bullseye] - ofono <postponed> (Revisit when/if fixed upstream)
NOTE: https://www.zerodayinitiative.com/advisories/ZDI-24-1084/
+ NOTE: https://git.kernel.org/pub/scm/network/ofono/ofono.git/commit/?id=a240705a0d5d41eca6de4125ab2349ecde4c873a
CVE-2024-7543 (oFono SimToolKit Heap-based Buffer Overflow Privilege Escalation Vulne ...)
- ofono 2.14-1 (bug #1078555)
[bookworm] - ofono <postponed> (Revisit when/if fixed upstream)
[bullseye] - ofono <postponed> (Revisit when/if fixed upstream)
NOTE: https://www.zerodayinitiative.com/advisories/ZDI-24-1083/
+ NOTE: https://git.kernel.org/pub/scm/network/ofono/ofono.git/commit/?id=90e60ada012de42964214d8155260f5749d0dcc7
CVE-2024-7542 (oFono AT CMGR Command Uninitialized Variable Information Disclosure Vu ...)
- ofono 2.14-1 (bug #1078555)
[bookworm] - ofono <postponed> (Revisit when/if fixed upstream)
[bullseye] - ofono <postponed> (Revisit when/if fixed upstream)
NOTE: https://www.zerodayinitiative.com/advisories/ZDI-24-1082/
+ NOTE: https://git.kernel.org/pub/scm/network/ofono/ofono.git/commit/?id=29ff6334b492504ace101be748b256e6953d2c2f
CVE-2024-7541 (oFono AT CMT Command Uninitialized Variable Information Disclosure Vul ...)
- ofono 2.14-1 (bug #1078555)
[bookworm] - ofono <postponed> (Revisit when/if fixed upstream)
[bullseye] - ofono <postponed> (Revisit when/if fixed upstream)
NOTE: https://www.zerodayinitiative.com/advisories/ZDI-24-1081/
+ NOTE: https://git.kernel.org/pub/scm/network/ofono/ofono.git/commit/?id=29ff6334b492504ace101be748b256e6953d2c2f
CVE-2024-7540 (oFono AT CMGL Command Uninitialized Variable Information Disclosure Vu ...)
- ofono 2.14-1 (bug #1078555)
[bookworm] - ofono <postponed> (Revisit when/if fixed upstream)
[bullseye] - ofono <postponed> (Revisit when/if fixed upstream)
NOTE: https://www.zerodayinitiative.com/advisories/ZDI-24-1080/
+ NOTE: https://git.kernel.org/pub/scm/network/ofono/ofono.git/commit/?id=29ff6334b492504ace101be748b256e6953d2c2f
CVE-2024-7539 (oFono CUSD Stack-based Buffer Overflow Code Execution Vulnerability. T ...)
- ofono 2.14-1 (bug #1078555)
[bookworm] - ofono <postponed> (Revisit when/if fixed upstream)
[bullseye] - ofono <postponed> (Revisit when/if fixed upstream)
NOTE: https://www.zerodayinitiative.com/advisories/ZDI-24-1079/
+ NOTE: https://git.kernel.org/pub/scm/network/ofono/ofono.git/commit/?id=389e2344f86319265fb72ae590b470716e038fdc
CVE-2024-7538 (oFono CUSD AT Command Stack-based Buffer Overflow Code Execution Vulne ...)
- ofono <unfixed> (bug #1078555)
[bookworm] - ofono <postponed> (Revisit when/if fixed upstream)
@@ -72849,6 +72858,7 @@ CVE-2023-4235 (A flaw was found in ofono, an Open Source Telephony on Linux. A s
[bullseye] - ofono <no-dsa> (Minor issue)
[buster] - ofono <postponed> (Minor issue, follow bullseye)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2255402
+ NOTE: https://git.kernel.org/pub/scm/network/ofono/ofono.git/commit/?id=02aa0f9bad3d9e47a152fc045d0f51874d901d7e
CVE-2023-4234 (A flaw was found in ofono, an Open Source Telephony on Linux. A stack ...)
- ofono 2.10-1 (bug #1070371)
[bookworm] - ofono <postponed> (Revisit when/if fixed upstream)
@@ -72869,6 +72879,7 @@ CVE-2023-4232 (A flaw was found in ofono, an Open Source Telephony on Linux. A s
[bullseye] - ofono <no-dsa> (Minor issue)
[buster] - ofono <postponed> (Minor issue, follow bullseye)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2255394
+ NOTE: https://git.kernel.org/pub/scm/network/ofono/ofono.git/commit/?id=2ff2da7ac374a790f8b2a0216bcb4e3126498225
CVE-2024-3914 (Use after free in V8 in Google Chrome prior to 124.0.6367.60 allowed a ...)
{DSA-5668-1}
- chromium 124.0.6367.60-1
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a6c84e7c2bcdfaae91639b56c12c97c7a1963af3
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a6c84e7c2bcdfaae91639b56c12c97c7a1963af3
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250106/b48f6430/attachment.htm>
More information about the debian-security-tracker-commits
mailing list