Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 55cc7889 by Salvatore Bonaccorso at 2024-03-01T07:52:55+01:00 Mark CVE-2023-30534 as ignored for bullseye and bookworm Touch as well buster as this came from a discussion with Sylvain Beucler for the set of CVE fixes on cacti and there was agreement to ignore the CVE. - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -50598,9 +50598,9 @@ CVE-2023-30535 (Snowflake JDBC provides a JDBC type 4 driver that supports core NOT-FOR-US: Snowflake JDBC CVE-2023-30534 (Cacti is an open source operational monitoring and fault management fr ...) - cacti 1.2.25+ds1-1 - [bookworm] - cacti <postponed> (Can be included in next DSA round or pu) - [bullseye] - cacti <postponed> (Can be included in next DSA round or pu) - [buster] - cacti <postponed> (Minor issue, not exploitable in standard Cacti; Can be included in next DLA round) + [bookworm] - cacti <ignored> (Minor issue; invasive to fix and introduces regressions) + [bullseye] - cacti <ignored> (Minor issue; invasive to fix and introduces regressions) + [buster] - cacti <ignored> (Minor issue; invasive to fix and introduces regressions) NOTE: https://github.com/Cacti/cacti/security/advisories/GHSA-77rf-774j-6h3p NOTE: https://github.com/Cacti/cacti/commit/8c6cd77001697f4b82cc55055b945c2f3974976c (release/1.2.24) NOTE: https://github.com/Cacti/cacti/commit/cf1033670af4264a6ba7d687b47fed92e376f18f (release/1.2.25) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/55cc78891e90934105abb9d7d186f15233c9a303 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/55cc78891e90934105abb9d7d186f15233c9a303 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits