[Git][security-tracker-team/security-tracker][master] CVE-2024-58261/rust-sequoia-openpgp assigned

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Jul 28 21:20:28 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
541b1580 by Salvatore Bonaccorso at 2025-07-28T22:19:52+02:00
CVE-2024-58261/rust-sequoia-openpgp assigned

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -331,8 +331,6 @@ CVE-2025-8226 (A vulnerability was found in yanyutao0402 ChanCMS up to 3.1.2. It
 	NOT-FOR-US: yanyutao0402 ChanCMS
 CVE-2024-58263 (The cosmwasm-std crate before 2.0.2 for Rust allows integer overflows  ...)
 	NOT-FOR-US: cosmwasm-std Rust crate
-CVE-2024-58261 (The sequoia-openpgp crate 1.13.0 before 1.21.0 for Rust allows an infi ...)
-	TODO: check
 CVE-2025-8225 (A vulnerability was found in GNU Binutils 2.44 and classified as probl ...)
 	- binutils <unfixed> (unimportant)
 	NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=e51fdff7d2e538c0e5accdd65649ac68e6e0ddd4
@@ -116211,7 +116209,7 @@ CVE-2024-1493 (An issue was discovered in GitLab CE/EE affecting all versions st
 	- gitlab 17.3.5-2
 CVE-2024-1330 (The kadence-blocks-pro WordPress plugin before 2.3.8 does not prevent  ...)
 	NOT-FOR-US: WordPress plugin
-CVE-2024-XXXX [RUSTSEC-2024-0345]
+CVE-2024-58261 [RUSTSEC-2024-0345]
 	- rust-sequoia-openpgp 1.21.0-1 (bug #1074352)
 	[bookworm] - rust-sequoia-openpgp <not-affected> (Vulnerable code not present)
 	[bullseye] - rust-sequoia-openpgp <not-affected> (Vulnerable code not present)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/541b1580ac40fcb6799ec3d0137473acf7d60899

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/541b1580ac40fcb6799ec3d0137473acf7d60899
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250728/45cd1c76/attachment.htm>

More information about the debian-security-tracker-commits mailing list