Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 00852d86 by Salvatore Bonaccorso at 2024-08-23T22:03:00+02:00 Track fixed version for trafficserver via unstable - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -7436,15 +7436,15 @@ CVE-2024-24622 (Softaculous Webuzo contains a command injection in the password CVE-2024-24621 (Softaculous Webuzo contains an authentication bypass vulnerability thr ...) NOT-FOR-US: Softaculous Webuzo CVE-2024-35296 (Invalid Accept-Encoding header can cause Apache Traffic Server to fail ...) - - trafficserver <unfixed> (bug #1077141) + - trafficserver 9.2.5+ds-1 (bug #1077141) NOTE: https://www.openwall.com/lists/oss-security/2024/07/25/1 NOTE: https://github.com/apache/trafficserver/commit/4122abd9272d49cb4ed87d479e1febb0f1c7c1da CVE-2024-35161 (Apache Traffic Server forwards malformed HTTP chunked trailer section ...) - - trafficserver <unfixed> (bug #1077141) + - trafficserver 9.2.5+ds-1 (bug #1077141) NOTE: https://www.openwall.com/lists/oss-security/2024/07/25/1 NOTE: https://github.com/apache/trafficserver/commit/3ba1e2685f89bcd631b66748f70f69a5eecf741b CVE-2023-38522 (Apache Traffic Server accepts characters that are not allowed for HTTP ...) - - trafficserver <unfixed> (bug #1077141) + - trafficserver 9.2.5+ds-1 (bug #1077141) NOTE: https://www.openwall.com/lists/oss-security/2024/07/25/1 NOTE: https://github.com/apache/trafficserver/commit/b104992e2315969688a697cbf7d5007a7dca396f CVE-2024-7101 (A vulnerability, which was classified as critical, has been found in F ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/00852d860429b778a2a9ccbd18f99f34464843d5 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/00852d860429b778a2a9ccbd18f99f34464843d5 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits