Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
745fc863 by Salvatore Bonaccorso at 2024-03-16T11:15:30+01:00
Mark CVE-2024-28859 as NFU
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -14,7 +14,7 @@ CVE-2024-28862 (The Ruby One Time Password library (ROTP) is
an open source libr
- ruby-rotp <not-affected> (Only affects the upstream build,
permissions are correct for the deb)
NOTE:
https://github.com/mdp/rotp/security/advisories/GHSA-x2h8-qmj4-g62f
CVE-2024-28859 (Symfony1 is a community fork of symfony 1.4 with DIC, form
enhancement ...)
- TODO: check
+ NOT-FOR-US: Symfony1 (community fork of symfony 1.4 with some
enhancements)
CVE-2024-28640 (Buffer Overflow vulnerability in TOTOLink X5000R
V9.1.0u.6118-B2020110 ...)
NOT-FOR-US: TOTOLink
CVE-2024-28639 (Buffer Overflow vulnerability in TOTOLink X5000R
V9.1.0u.6118-B2020110 ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/745fc863cd21c43e3712f416dde63e19accf49c7
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/745fc863cd21c43e3712f416dde63e19accf49c7
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
