[Git][security-tracker-team/security-tracker][master] Update information on CVE-2024-51491

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Jan 21 21:05:30 GMT 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f68b80ca by Salvatore Bonaccorso at 2025-01-21T22:04:55+01:00
Update information on CVE-2024-51491

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3179,9 +3179,10 @@ CVE-2024-56138 (notion-go is a collection of libraries for supporting sign and v
 	NOTE: https://github.com/notaryproject/notation-go/security/advisories/GHSA-45v3-38pc-874v
 	NOTE: https://github.com/notaryproject/notation-go/commit/e7005a6d13e5ba472d4e166fbb085152f909e102 (v1.3.0-rc.2)
 CVE-2024-51491 (notion-go is a collection of libraries for supporting sign and verify  ...)
-	- golang-github-notaryproject-notation-go <unfixed>
+	- golang-github-notaryproject-notation-go <not-affected> (Vulnerable code introduced later)
 	NOTE: https://github.com/notaryproject/notation-go/security/advisories/GHSA-qjh3-4j3h-vmwp
-	NOTE: https://github.com/notaryproject/notation-go/commit/3c3302258ad510fbca2f8a73731569d91f07d196 (v1.3.0-rc.2)
+	NOTE: Introduced by: https://github.com/notaryproject/notation-go/commit/84c2ec076201697ad05e5315444812f824dad56b (v1.3.0-rc.1)
+	NOTE: Fixed by: https://github.com/notaryproject/notation-go/commit/3c3302258ad510fbca2f8a73731569d91f07d196 (v1.3.0-rc.2)
 CVE-2024-13348 (The Smart Agenda \u2013 Prise de rendez-vous en ligne plugin for WordP ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2024-13324



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f68b80cad1cad6e228edb4e797cfe5625afde720

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f68b80cad1cad6e228edb4e797cfe5625afde720
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250121/a4eb1d1c/attachment.htm>

More information about the debian-security-tracker-commits mailing list