[Git][security-tracker-team/security-tracker][master] Track fixed version for opensc issues via unstable
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: bd5ee478 by Salvatore Bonaccorso at 2024-02-18T21:00:20+01:00 Track fixed version for opensc issues via unstable - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -1215,7 +1215,7 @@ CVE-2024-1459 (A path traversal vulnerability was found in Undertow. This issue - undertow NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2259475 CVE-2024-1454 (The use-after-free vulnerability was found in the AuthentIC driver in ...) - - opensc + - opensc 0.25.0~rc1-1 [bookworm] - opensc (Minor issue) [bullseye] - opensc (Minor issue) [buster] - opensc (Minor issue) @@ -3478,7 +3478,7 @@ CVE-2024-1062 (A heap overflow flaw was found in 389-ds-base. This issue leads t NOTE: https://github.com/389ds/389-ds-base/issues/5647 TODO: check details CVE-2023-5992 (A vulnerability was found in OpenSC where PKCS#1 encryption padding re ...) - - opensc (bug #1064189) + - opensc 0.25.0~rc1-1 (bug #1064189) [bookworm] - opensc (Minor issue) [bullseye] - opensc (Minor issue) [buster] - opensc (Minor issue) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bd5ee478362bf671dc862c1134d898d66bad6d6b -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bd5ee478362bf671dc862c1134d898d66bad6d6b You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Track fixed version for opensc issues fixed via unstable
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: df0cc607 by Salvatore Bonaccorso at 2023-11-08T06:17:54+01:00 Track fixed version for opensc issues fixed via unstable - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -290,7 +290,7 @@ CVE-2023-5719 (The Crimson 3.2 Windows-based configuration tool allows users wit CVE-2023-4996 (Netskope was made aware of a security vulnerability in its NSClient pr ...) NOT-FOR-US: Netskope CVE-2023-4535 (An out-of-bounds read vulnerability was found in OpenSC packages withi ...) - - opensc (bug #1055520) + - opensc 0.23.0-2 (bug #1055520) NOTE: https://github.com/OpenSC/OpenSC/wiki/CVE-2023-4535 NOTE: Fixed by: https://github.com/OpenSC/OpenSC/commit/f1993dc4e0b33050b8f72a3558ee88b24c4063b2 (0.24.0-rc1) CVE-2023-47186 (Cross-Site Request Forgery (CSRF) vulnerability in Kadence WP Kadence ...) @@ -368,12 +368,12 @@ CVE-2023-41685 (Improper Neutralization of Special Elements used in an SQL Comma CVE-2023-41378 (In certain conditions for Calico Typha (v3.26.2, v3.25.1 and below), a ...) NOT-FOR-US: Calico Typha CVE-2023-40661 (Several memory vulnerabilities were identified within the OpenSC packa ...) - - opensc (bug #1055522) + - opensc 0.23.0-2 (bug #1055522) NOTE: https://github.com/OpenSC/OpenSC/issues/2792#issuecomment-1674806651 NOTE: https://github.com/OpenSC/OpenSC/wiki/CVE-2023-40661 NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2240913#c1 CVE-2023-40660 (A flaw was found in OpenSC packages that allow a potential PIN bypass. ...) - - opensc (bug #1055521) + - opensc 0.23.0-2 (bug #1055521) NOTE: https://github.com/OpenSC/OpenSC/issues/2792#issuecomment-1674806651 NOTE: https://github.com/OpenSC/OpenSC/wiki/CVE-2023-40660 NOTE: Fixed by: https://github.com/OpenSC/OpenSC/commit/868f76fb31255fd3fdacfc3e476452efeb61c3e7 (0.24.0-rc1) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/df0cc607976c89efe884cc0e17161bc4ad75ba94 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/df0cc607976c89efe884cc0e17161bc4ad75ba94 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] Track fixed version for opensc issues
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: d4fb490c by Salvatore Bonaccorso at 2020-12-06T11:38:12+01:00 Track fixed version for opensc issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@ -10238,19 +10238,19 @@ CVE-2019-20923 (A user authorized to perform database queries may trigger denial CVE-1999-0199 (manual/search.texi in the GNU C Library (aka glibc) before 2.2 lacks a ...) - glibc 2.2-1 CVE-2020-26572 (The TCOS smart card software driver in OpenSC before 0.21.0-rc1 has a ...) - - opensc (bug #972035) + - opensc 0.21.0-1 (bug #972035) [buster] - opensc (Minor issue) [stretch] - opensc (Minor issue) NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=22967 NOTE: https://github.com/OpenSC/OpenSC/commit/9d294de90d1cc66956389856e60b6944b27b4817 (0.21.0-rc1) CVE-2020-26571 (The gemsafe GPK smart card software driver in OpenSC before 0.21.0-rc1 ...) - - opensc (bug #972036) + - opensc 0.21.0-1 (bug #972036) [buster] - opensc (Minor issue) [stretch] - opensc (Minor issue) NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=20612 NOTE: https://github.com/OpenSC/OpenSC/commit/ed55fcd2996930bf58b9bb57e9ba7b1f3a753c43 (0.21.0-rc1) CVE-2020-26570 (The Oberthur smart card software driver in OpenSC before 0.21.0-rc1 ha ...) - - opensc (bug #972037) + - opensc 0.21.0-1 (bug #972037) [buster] - opensc (Minor issue) [stretch] - opensc (Minor issue) NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=24316 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d4fb490c27e8bfa2c7a60c775a19d2598a708c18 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d4fb490c27e8bfa2c7a60c775a19d2598a708c18 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
