UBUNTU-CVE-2024-54662

Source
https://ubuntu.com/security/CVE-2024-54662
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2024/UBUNTU-CVE-2024-54662.json
JSON Data
https://api.test.osv.dev/v1/vulns/UBUNTU-CVE-2024-54662
Related
Published
2024-12-17T18:15:00Z
Modified
2025-01-14T16:46:12Z
Summary
[none]
Details

Dante 1.4.0 through 1.4.3 (fixed in 1.4.4) has incorrect access control for some sockd.conf configurations involving socksmethod.

References

Affected packages

Ubuntu:Pro:18.04:LTS / dante

Package

Name
dante
Purl
pkg:deb/ubuntu/dante@1.4.2+dfsg-2build1?arch=source&distro=esm-apps/bionic

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.4.1+dfsg-5build1
1.4.2+dfsg-2
1.4.2+dfsg-2build1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:20.04:LTS / dante

Package

Name
dante
Purl
pkg:deb/ubuntu/dante@1.4.2+dfsg-7build1?arch=source&distro=focal

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.4.2+dfsg-6build2
1.4.2+dfsg-7
1.4.2+dfsg-7build1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:22.04:LTS / dante

Package

Name
dante
Purl
pkg:deb/ubuntu/dante@1.4.2+dfsg-7build4?arch=source&distro=jammy

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.4.2+dfsg-7build3.1.1
1.4.2+dfsg-7build4

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:24.10 / dante

Package

Name
dante
Purl
pkg:deb/ubuntu/dante@1.4.3+dfsg-1build1?arch=source&distro=oracular

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.4.3+dfsg-1
1.4.3+dfsg-1build1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:24.04:LTS / dante

Package

Name
dante
Purl
pkg:deb/ubuntu/dante@1.4.3+dfsg-1?arch=source&distro=noble

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.4.2+dfsg-7build8
1.4.2+dfsg-7build9
1.4.2+dfsg-7.1~willsync1
1.4.3+dfsg-1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}