Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker
Commits: ea3b4831 by Sylvain Beucler at 2024-04-30T16:11:19+02:00 CVE-2024-XXXX/ngircd: buster postponed - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -4149,6 +4149,7 @@ CVE-2024-XXXX [validate a server certificate in a TLS-based server-server connec - ngircd 27~rc1-1 [bookworm] - ngircd <no-dsa> (Minor issue, will be fixed via point update) [bullseye] - ngircd <no-dsa> (Minor issue, will be fixed via point update) + [buster] - ngircd <postponed> (Minor issue, follow bullseye point update) NOTE: https://github.com/ngircd/ngircd/issues/120 NOTE: https://github.com/ngircd/ngircd/commit/817937b218c4b57515f54216ebc936cd69df0aae (rel-27-rc1) CVE-2024-3778 (The file upload functionality of Ai3 QbiBot does not properly restrict ...) @@ -291190,7 +291191,7 @@ CVE-2020-14149 (In uftpd before 2.12, handle_CWD in ftpcmd.c mishandled the path CVE-2020-14148 (The Server-Server protocol implementation in ngIRCd before 26~rc2 allo ...) {DLA-2252-1} - ngircd 26-1 (bug #963147) - [buster] - ngircd <no-dsa> (Minor issue) + [buster] - ngircd <postponed> (Minor issue, fix along with next update) [stretch] - ngircd <no-dsa> (Minor issue) NOTE: https://github.com/ngircd/ngircd/issues/274 NOTE: https://github.com/ngircd/ngircd/issues/277 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ea3b48313bd5866136c3f761dba82823ad16227f -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ea3b48313bd5866136c3f761dba82823ad16227f You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits