[Git][security-tracker-team/security-tracker][master] CVE-2024-55553: register fix for frr 8.4.4
Arturo Borrero González (@arturo)
arturo at debian.org
Fri Jan 24 09:53:09 GMT 2025
Arturo Borrero González pushed to branch master at Debian Security Tracker / security-tracker
Commits:
c6a317b6 by Arturo Borrero Gonzalez at 2025-01-24T10:52:34+01:00
CVE-2024-55553: register fix for frr 8.4.4
There is an upstream patch available to fix it.
Signed-off-by: Arturo Borrero Gonzalez <arturo at debian.org>
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -6398,6 +6398,7 @@ CVE-2024-55553 (In FRRouting (FRR) before 10.3 from 6.0 onward, all routes are r
- frr 10.2.1-1
NOTE: Fixed by: https://github.com/FRRouting/frr/commit/b0800bfdf04b4fcf48504737ebfe4ba7f05268d3 (master)
NOTE: Fixed by: https://github.com/FRRouting/frr/commit/410eb0da69214a06350315575ddb332e363b66c6 (frr-10.2.1)
+ NOTE: Fixed by: https://github.com/opensourcerouting/frr/commit/cc1c66a7e8dd31c681f396f6635192c0d60a543c (frr-8.4.4)
CVE-2024-55076 (Grocy through 4.3.0 has no CSRF protection, as demonstrated by changin ...)
NOT-FOR-US: Grocy
CVE-2024-55075 (Grocy through 4.3.0 allows remote attackers to obtain sensitive inform ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c6a317b6757e0f8a9d7153dc7308e20f0d4c563f
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c6a317b6757e0f8a9d7153dc7308e20f0d4c563f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250124/ed178043/attachment.htm>
More information about the debian-security-tracker-commits
mailing list