Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ea3b4831 by Sylvain Beucler at 2024-04-30T16:11:19+02:00
CVE-2024-XXXX/ngircd: buster postponed
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -4149,6 +4149,7 @@ CVE-2024-XXXX [validate a server certificate in a
TLS-based server-server connec
- ngircd 27~rc1-1
[bookworm] - ngircd <no-dsa> (Minor issue, will be fixed via point
update)
[bullseye] - ngircd <no-dsa> (Minor issue, will be fixed via point
update)
+ [buster] - ngircd <postponed> (Minor issue, follow bullseye point
update)
NOTE: https://github.com/ngircd/ngircd/issues/120
NOTE:
https://github.com/ngircd/ngircd/commit/817937b218c4b57515f54216ebc936cd69df0aae
(rel-27-rc1)
CVE-2024-3778 (The file upload functionality of Ai3 QbiBot does not properly
restrict ...)
@@ -291190,7 +291191,7 @@ CVE-2020-14149 (In uftpd before 2.12, handle_CWD in
ftpcmd.c mishandled the path
CVE-2020-14148 (The Server-Server protocol implementation in ngIRCd before
26~rc2 allo ...)
{DLA-2252-1}
- ngircd 26-1 (bug #963147)
- [buster] - ngircd <no-dsa> (Minor issue)
+ [buster] - ngircd <postponed> (Minor issue, fix along with next update)
[stretch] - ngircd <no-dsa> (Minor issue)
NOTE: https://github.com/ngircd/ngircd/issues/274
NOTE: https://github.com/ngircd/ngircd/issues/277
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ea3b48313bd5866136c3f761dba82823ad16227f
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ea3b48313bd5866136c3f761dba82823ad16227f
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
