[Git][security-tracker-team/security-tracker][master] LTS: triage CVE-2024-36275/ipmctl as <postponed> for bullseye

Roberto C. Sánchez (@roberto) roberto at debian.org
Tue Jun 24 21:11:08 BST 2025 


Roberto C. Sánchez pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5bbbb6c3 by Roberto C. Sánchez at 2025-06-24T16:10:52-04:00
LTS: triage CVE-2024-36275/ipmctl as <postponed> for bullseye

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -70187,6 +70187,7 @@ CVE-2024-36276 (Insecure inherited permissions for some Intel(R) CIP software be
 CVE-2024-36275 (NULL pointer dereference in some Intel(R) Optane(TM) PMem Management s ...)
 	- ipmctl <unfixed> (bug #1087731)
 	[bookworm] - ipmctl <no-dsa> (Minor issue)
+	[bullseye] - ipmctl <postponed> (Minor issue)
 	NOTE: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01189.html
 	NOTE: https://github.com/intel/ipmctl/commit/59d74ca68fcde3f1a11298a935b470fac09904aa (v03.00.00.0499)
 	NOTE: Fixed in 03.00.00.0499 and later upstream.


=====================================
data/dla-needed.txt
=====================================
@@ -154,10 +154,6 @@ icingaweb2
   NOTE: 20250603: I also saw in the release log that multiple issues were fixed without mentioning any CVE (dleidert)
   NOTE: 20250603: upstream should be asked about the patches for CVE 2025-* (dleidert)
 --
-ipmctl
-  NOTE: 20250112: Added by Front-Desk (ta)
-  NOTE: 20250217: I wasn't able to determine a patch for CVE-2023-27517 for any of the series (dleidert)
---
 jgit
   NOTE: 20250614: Added by Front-Desk (rouca)
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5bbbb6c31703e8d4959aaf2dc85e527489317ae9

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5bbbb6c31703e8d4959aaf2dc85e527489317ae9
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250624/4b334d85/attachment.htm>

More information about the debian-security-tracker-commits mailing list