[Git][security-tracker-team/security-tracker][master] Add CVE-2024-57360/binutils

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
42284a02 by Salvatore Bonaccorso at 2025-01-23T06:03:57+01:00
Add CVE-2024-57360/binutils

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -528,7 +528,10 @@ CVE-2024-57537 (Linksys E8450 v1.2.00.360516 was discovered to contain a buffer
 CVE-2024-57536 (Linksys E8450 v1.2.00.360516 was discovered to contain a command injec ...)
 	NOT-FOR-US: Linksys
 CVE-2024-57360 (https://www.gnu.org/software/binutils/ nm >=2.43 is affected by: Incor ...)
-	TODO: check
+	- binutils 2.43.50.20241221-1 (unimportant)
+	NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=32467
+	NOTE: Fixed by: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=5f8987d3999edb26e757115fe87be55787d510b9
+	NOTE: binutils not covered by security support
 CVE-2024-55959 (Northern.tech Mender Client 4.x before 4.0.5 has Insecure Permissions.)
 	NOT-FOR-US: Northern.tech Mender Client
 CVE-2024-55958 (Northern.tech CFEngine Enterprise Mission Portal 3.24.0, 3.21.5, and b ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/42284a0201390e3b5fbccbf6aba02d246bba1888

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/42284a0201390e3b5fbccbf6aba02d246bba1888
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250123/999588db/attachment.htm>