Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 930570 (CVE-2024-32663, CVE-2024-32664, CVE-2024-32867)

Summary: <net-analyzer/suricata-7.0.5: multiple vulnerabilities
Product: Gentoo Security Reporter: Marek Szuba <marecki>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: CONFIRMED ---    
Severity: normal CC: maintainer-needed
Priority: Normal    
Version: unspecified   
Hardware: All   
OS: Linux   
Whiteboard: ?? [noglsa]
Package list:
Runtime testing required: ---

Description Marek Szuba (RETIRED) archtester gentoo-dev 2024-04-24 12:41:01 UTC 
From the upstream release notes for 7.0.5, edited to remove mentions of the 6.0.x series (which we haven't had in the tree for a long time):

"CVE IDs Addressed

CVE-2024-32663 CRITICAL
CVE-2024-32664 HIGH
CVE-2024-32867 MODERATE"

7.0.5 pushed, no vulnerable versions left in the tree.
Comment 1 Marek Szuba (RETIRED) archtester gentoo-dev 2024-04-24 12:42:39 UTC 
Also, gentle reminder about Bug #918589 still being open!
Comment 2 Hans de Graaff gentoo-dev Security 2024-04-24 13:03:35 UTC 
It looks like there is no information available for these security issues yet. This means we can't make a severity assessment for now.