[Git][security-tracker-team/security-tracker][master] 2 commits: lts: triage CVE-2024-11218/golang-github-containers-buildah

Emilio Pozuelo Monfort (@pochu) pochu at debian.org
Tue Jan 28 18:59:50 GMT 2025 


Emilio Pozuelo Monfort pushed to branch master at Debian Security Tracker / security-tracker


Commits:
edfd3971 by Emilio Pozuelo Monfort at 2025-01-28T19:58:04+01:00
lts: triage CVE-2024-11218/golang-github-containers-buildah

- - - - -
09d54ef0 by Emilio Pozuelo Monfort at 2025-01-28T19:59:20+01:00
lts: triage CVE-2025-0781 for bullseye

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -558,8 +558,10 @@ CVE-2023-46187 (IBM InfoSphere Master Data Management 11.6, 12.0, and 14.0 is vu
 CVE-2025-0781 [issues in handling of Nasal code]
 	- flightgear 1:2020.3.19+dfsg-1
 	[bookworm] - flightgear <no-dsa> (Minor issue)
+	[bullseye] - flightgear <no-dsa> (Minor issue)
 	- simgear 1:2020.3.19+dfsg-1
 	[bookworm] - simgear <no-dsa> (Minor issue)
+	[bullseye] - simgear <no-dsa> (Minor issue)
 	NOTE: Fixed by: https://gitlab.com/flightgear/flightgear/-/commit/ad37afce28083fad7f79467b3ffdead753584358
 	NOTE: Fixed by: https://gitlab.com/flightgear/simgear/-/commit/5bb023647114267141a7610e8f1ca7d6f4f5a5a8
 CVE-2024-31906 (IBM Automation Decision Services 23.0.2 allows web pages to be stored  ...)
@@ -2111,6 +2113,7 @@ CVE-2024-12117 (The Stackable \u2013 Page Builder Gutenberg Blocks plugin for Wo
 CVE-2024-11218 (A vulnerability was found in `podman build` and `buildah.` This issue  ...)
 	- golang-github-containers-buildah 1.38.1+ds1-1
 	[bookworm] - golang-github-containers-buildah <no-dsa> (Minor issue)
+	[bullseye] - golang-github-containers-buildah <no-dsa> (Minor issue)
 	NOTE: https://github.com/advisories/GHSA-5vpc-35f4-r8w6
 CVE-2023-50733 (A Server-Side Request Forgery (SSRF) vulnerability has been identified ...)
 	NOT-FOR-US: Lexmark



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/1bf2ce5a1db78eb231c1ff863fb95e7a7473fa29...09d54ef0e469c93e0452be99505d05563aefce93

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/1bf2ce5a1db78eb231c1ff863fb95e7a7473fa29...09d54ef0e469c93e0452be99505d05563aefce93
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250128/0b817156/attachment.htm>

More information about the debian-security-tracker-commits mailing list