Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 930570 (CVE-2024-32663, CVE-2024-32664, CVE-2024-32867) - <net-analyzer/suricata-7.0.5: multiple vulnerabilities
Summary: <net-analyzer/suricata-7.0.5: multiple vulnerabilities
Status: CONFIRMED
Alias: CVE-2024-32663, CVE-2024-32664, CVE-2024-32867
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Gentoo Security
URL:
Whiteboard: ?? [noglsa]
Keywords:
Depends on:
Blocks:
 
Reported: 2024-04-24 12:41 UTC by Marek Szuba
Modified: 2024-04-24 13:03 UTC (History)
0 users

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Marek Szuba archtester gentoo-dev 2024-04-24 12:41:01 UTC
From the upstream release notes for 7.0.5, edited to remove mentions of the 6.0.x series (which we haven't had in the tree for a long time):

"CVE IDs Addressed

CVE-2024-32663 CRITICAL
CVE-2024-32664 HIGH
CVE-2024-32867 MODERATE"

7.0.5 pushed, no vulnerable versions left in the tree.
Comment 1 Marek Szuba archtester gentoo-dev 2024-04-24 12:42:39 UTC
Also, gentle reminder about Bug #918589 still being open!
Comment 2 Hans de Graaff gentoo-dev Security 2024-04-24 13:03:35 UTC
It looks like there is no information available for these security issues yet. This means we can't make a severity assessment for now.