proj: Open vSwitch
subj: [vs-plain] [ADVISORY] CVE-2023-3966: Open vSwitch: Invalid memory access in Geneve with HW offload.
trep: Thu Feb 01 21:07:08 2024
tcrd: 08-Feb-2024
cves: CVE-2023-3966
toss: Thu Feb 08 20:13:41 2024
soss: [oss-security] [ADVISORY] CVE-2023-3966: Open vSwitch: Invalid memory access in Geneve with HW offload.
loss: https://www.openwall.com/lists/oss-security/2024/02/08/3

proj: Unbound
subj: [vs] ...
trep: Mon Feb 12 08:50:19 2024
tcrd: "not before 12:00 UTC" on 13 February 2024
cves: CVE-2023-50387, CVE-2023-50868
toss: Tue Feb 13 14:23:55 2024
soss: [oss-security] Unbound: disclosure of CVE-2023-50387 and CVE-2023-50868 DNSSEC validation vulnerabilities
loss: https://www.openwall.com/lists/oss-security/2024/02/13/2

proj: PowerDNS Recursor
subj: [vs-plain] PowerDNS pre-notification: EMBARGO: PowerDNS Security Advisory 2024-01: crafted DNSSEC records in a zone can lead to a denial of service in Recursor
trep: Mon Feb 12 11:31:30 2024
tcrd: 13th of February 2024
cves: CVE-2023-50387, CVE-2023-50868
toss: Tue Feb 13 21:49:40 2024
soss: Re: [oss-security] Unbound: disclosure of CVE-2023-50387 and CVE-2023-50868 DNSSEC validation vulnerabilities
loss: https://www.openwall.com/lists/oss-security/2024/02/13/4
tpub: Tue Feb 13 12:01:00 2024
lpub: https://github.com/PowerDNS/pdns/pull/13781

proj: BIND 9
subj: [vs] ...
trep: Mon Feb 12 15:34:41 2024
tcrd: 13 February 2024
cves: CVE-2023-4408, CVE-2023-5517, CVE-2023-5679, CVE-2023-6516, CVE-2023-50387, CVE-2023-50868
toss: Tue Feb 13 14:23:37 2024
soss: [oss-security] ISC has disclosed six vulnerabilities in BIND 9 (CVE-2023-4408, CVE-2023-5517, CVE-2023-5679, CVE-2023-6516, CVE-2023-50387, CVE-2023-50868)
loss: https://www.openwall.com/lists/oss-security/2024/02/13/1

proj: EDK2 based Virtual Machine firmware
subj: [vs-plain] Secure Boot bypass in EDK2 based Virtual Machine firmware
trep: Tue Feb 13 03:44:41 2024
tcrd: February 14th 2024 at 13:00 UTC+0
cves: CVE-2023-48733, CVE-2023-49721
toss: Wed Feb 14 14:48:15 2024
soss: [oss-security] Secure Boot bypass in EDK2 based Virtual Machine firmware
loss: https://www.openwall.com/lists/oss-security/2024/02/14/4

proj: c-ares
subj: [vs-plain] c-ares security vuln
trep: Thu Feb 22 18:12:49 2024
tcrd: 2/23/2024
cves: CVE-2024-25629
toss: Fri Feb 23 12:40:51 2024
soss: [oss-security] c-ares CVE-2024-25629
loss: https://www.openwall.com/lists/oss-security/2024/02/23/2