[Git][security-tracker-team/security-tracker][master] Mark CVE-2023-50966/erlang-jose as postponed for buster

[Utkarsh Gupta (@utkarsh)]

Utkarsh Gupta pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
600066d0 by Utkarsh Gupta at 2024-05-20T02:51:06+05:30
Mark CVE-2023-50966/erlang-jose as postponed for buster

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -21254,6 +21254,7 @@ CVE-2023-6597 (An issue was found in the CPython 
`tempfile.TemporaryDirectory` c
        NOTE: Introduced by: 
https://github.com/python/cpython/commit/e9b51c0ad81da1da11ae65840ac8b50a8521373c
 (v3.8.0b1)
 CVE-2023-50966 (erlang-jose (aka JOSE for Erlang and Elixir) through 1.11.6 
allow atta ...)
        - erlang-jose <unfixed> (bug #1067456)
+       [buster] - erlang-jose <postponed> (DoS via a large p2c value but still 
appears minor)
        NOTE: https://github.com/potatosalad/erlang-jose/issues/156
        NOTE: https://github.com/P3ngu1nW/CVE_Request/blob/main/erlang-jose.md
 CVE-2023-4426



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/600066d0e4a00aa7fab3ce3b0f8ca5d8ff9f6054

-- 
This project does not include diff previews in email notifications.
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/600066d0e4a00aa7fab3ce3b0f8ca5d8ff9f6054
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits