diff options
| author | Moritz Mühlenhoff <jmm@debian.org> | 2024-03-14 14:15:31 +0100 |
|---|---|---|
| committer | Moritz Mühlenhoff <jmm@debian.org> | 2024-03-14 14:20:15 +0100 |
| commit | 5e98d947f346241b5513a6c70629e8ec73a1b55b (patch) | |
| tree | 1d1a22c3da09a7162564c802507363f34938f3c3 /data | |
| parent | a278aa253c0ee95020cb9cf3ad4486c4c3649541 (diff) | |
openvswitch DSA
Diffstat (limited to 'data')
| -rw-r--r-- | data/CVE/list | 4 | ||||
| -rw-r--r-- | data/DSA/list | 4 | ||||
| -rw-r--r-- | data/dsa-needed.txt | 3 |
3 files changed, 5 insertions, 6 deletions
diff --git a/data/CVE/list b/data/CVE/list index 28fe13d383..bc989e5007 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -12380,7 +12380,7 @@ CVE-2024-22876 (StrangeBee TheHive 5.1.0 to 5.1.9 and 5.2.0 to 5.2.8 is vulnerab NOT-FOR-US: StrangeBee TheHive CVE-2024-22563 (openvswitch 2.17.8 was discovered to contain a memory leak via the fun ...) - openvswitch 2.17.2-4 - [bullseye] - openvswitch <no-dsa> (Minor issue) + [bullseye] - openvswitch 2.15.0+ds1-2+deb11u5 [buster] - openvswitch <not-affected> (Vulnerable code introduced later) NOTE: https://github.com/openvswitch/ovs-issues/issues/315 NOTE: https://github.com/openvswitch/ovs/commit/3168f328c78cf6e4b3022940452673b0e49f7620 (v2.17.0) @@ -32079,8 +32079,6 @@ CVE-2023-33268 (An issue was discovered in DTS Monitoring 3.57.0. The parameter CVE-2023-5366 (A flaw was found in Open vSwitch that allows ICMPv6 Neighbor Advertise ...) {DLA-3734-1} - openvswitch 3.1.2-1 - [bookworm] - openvswitch <no-dsa> (Minor issue) - [bullseye] - openvswitch <no-dsa> (Minor issue) NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2006347 NOTE: https://github.com/openvswitch/ovs/commit/694c7b4e097c4d89e23ea9b3c7b677b4fcbe0459 (v3.1.2) NOTE: https://github.com/openvswitch/ovs/commit/489553b1c21692063931a9f50b6849b23128443c (v3.2.0) diff --git a/data/DSA/list b/data/DSA/list index 0408484d9c..f92b8a9de0 100644 --- a/data/DSA/list +++ b/data/DSA/list @@ -1,3 +1,7 @@ +[14 Mar 2024] DSA-5640-1 openvswitch - security update + {CVE-2023-3966 CVE-2023-5366} + [bullseye] - openvswitch 2.15.0+ds1-2+deb11u5 + [bookworm] - openvswitch 3.1.0-2+deb12u1 [13 Mar 2024] DSA-5639-1 chromium - security update {CVE-2024-2400} [bookworm] - chromium 122.0.6261.128-1~deb12u1 diff --git a/data/dsa-needed.txt b/data/dsa-needed.txt index 2c747e4787..6539c3973a 100644 --- a/data/dsa-needed.txt +++ b/data/dsa-needed.txt @@ -54,9 +54,6 @@ nodejs -- opennds/stable -- -openvswitch (jmm) - Maintainer sent debdiff for CVE-2023-3966, but there are other CVE fixes which might be piggy backed. --- php-cas/oldstable -- php-dompdf-svg-lib/stable |