golang-github-containers-buildah

Emilio Pozuelo Monfort (@pochu) Tue, 28 Jan 2025 11:00:02 -0800


Emilio Pozuelo Monfort pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
edfd3971 by Emilio Pozuelo Monfort at 2025-01-28T19:58:04+01:00
lts: triage CVE-2024-11218/golang-github-containers-buildah

- - - - -
09d54ef0 by Emilio Pozuelo Monfort at 2025-01-28T19:59:20+01:00
lts: triage CVE-2025-0781 for bullseye

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -558,8 +558,10 @@ CVE-2023-46187 (IBM InfoSphere Master Data Management 
11.6, 12.0, and 14.0 is vu
 CVE-2025-0781 [issues in handling of Nasal code]
        - flightgear 1:2020.3.19+dfsg-1
        [bookworm] - flightgear <no-dsa> (Minor issue)
+       [bullseye] - flightgear <no-dsa> (Minor issue)
        - simgear 1:2020.3.19+dfsg-1
        [bookworm] - simgear <no-dsa> (Minor issue)
+       [bullseye] - simgear <no-dsa> (Minor issue)
        NOTE: Fixed by: 
https://gitlab.com/flightgear/flightgear/-/commit/ad37afce28083fad7f79467b3ffdead753584358
        NOTE: Fixed by: 
https://gitlab.com/flightgear/simgear/-/commit/5bb023647114267141a7610e8f1ca7d6f4f5a5a8
 CVE-2024-31906 (IBM Automation Decision Services 23.0.2 allows web pages to be 
stored  ...)
@@ -2111,6 +2113,7 @@ CVE-2024-12117 (The Stackable \u2013 Page Builder 
Gutenberg Blocks plugin for Wo
 CVE-2024-11218 (A vulnerability was found in `podman build` and `buildah.` 
This issue  ...)
        - golang-github-containers-buildah 1.38.1+ds1-1
        [bookworm] - golang-github-containers-buildah <no-dsa> (Minor issue)
+       [bullseye] - golang-github-containers-buildah <no-dsa> (Minor issue)
        NOTE: https://github.com/advisories/GHSA-5vpc-35f4-r8w6
 CVE-2023-50733 (A Server-Side Request Forgery (SSRF) vulnerability has been 
identified ...)
        NOT-FOR-US: Lexmark



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/1bf2ce5a1db78eb231c1ff863fb95e7a7473fa29...09d54ef0e469c93e0452be99505d05563aefce93

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/1bf2ce5a1db78eb231c1ff863fb95e7a7473fa29...09d54ef0e469c93e0452be99505d05563aefce93
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] 2 commits: lts: triage CVE-2024-11218/golang-github-containers-buildah

Reply via email to