Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
5e701c54 by security tracker role at 2024-02-05T08:11:38+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,83 @@
+CVE-2024-25089 (Malwarebytes Binisoft Windows Firewall Control before 6.9.9.2
allows r ...)
+ TODO: check
+CVE-2024-24870 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-24866 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-24865 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-24864 (A race condition was found in the Linux kernel's
media/dvb-core in dvb ...)
+ TODO: check
+CVE-2024-24861 (A race condition was found in the Linux kernel's media/xc4000
device d ...)
+ TODO: check
+CVE-2024-24860 (A race condition was found in the Linux kernel's bluetooth
device driv ...)
+ TODO: check
+CVE-2024-24859 (A race condition was found in the Linux kernel's net/bluetooth
in snif ...)
+ TODO: check
+CVE-2024-24858 (A race condition was found in the Linux kernel's net/bluetooth
in {con ...)
+ TODO: check
+CVE-2024-24857 (A race condition was found in the Linux kernel's net/bluetooth
device ...)
+ TODO: check
+CVE-2024-24855 (A race condition was found in the Linux kernel's scsi device
driver in ...)
+ TODO: check
+CVE-2024-24848 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-24847 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-24846 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-24841 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-24839 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-24838 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2024-23196 (A race condition was found in the Linux kernel's sound/hda
device dri ...)
+ TODO: check
+CVE-2024-22667 (Vim before 9.0.2142 has a stack-based buffer overflow because
did_set_ ...)
+ TODO: check
+CVE-2024-22386 (A race condition was found in the Linux kernel's drm/exynos
device dri ...)
+ TODO: check
+CVE-2024-20016 (In ged, there is a possible out of bounds write due to an
integer over ...)
+ TODO: check
+CVE-2024-20015 (In telephony, there is a possible escalation of privilege due
to a per ...)
+ TODO: check
+CVE-2024-20013 (In keyInstall, there is a possible out of bounds write due to
a missin ...)
+ TODO: check
+CVE-2024-20012 (In keyInstall, there is a possible escalation of privilege due
to type ...)
+ TODO: check
+CVE-2024-20011 (In alac decoder, there is a possible information disclosure
due to an ...)
+ TODO: check
+CVE-2024-20010 (In keyInstall, there is a possible escalation of privilege due
to type ...)
+ TODO: check
+CVE-2024-20009 (In alac decoder, there is a possible out of bounds write due
to an inc ...)
+ TODO: check
+CVE-2024-20007 (In mp3 decoder, there is a possible out of bounds write due to
a race ...)
+ TODO: check
+CVE-2024-20006 (In da, there is a possible out of bounds write due to a
missing bounds ...)
+ TODO: check
+CVE-2024-20004 (In Modem NL1, there is a possible system crash due to an
improper inpu ...)
+ TODO: check
+CVE-2024-20003 (In Modem NL1, there is a possible system crash due to an
improper inpu ...)
+ TODO: check
+CVE-2024-20002 (In TVAPI, there is a possible out of bounds write due to a
missing bou ...)
+ TODO: check
+CVE-2024-20001 (In TVAPI, there is a possible out of bounds write due to a
missing bou ...)
+ TODO: check
+CVE-2023-7077 (Sharp NEC Displays (P403, P463, P553, P703, P801, X554UN,
X464UN, X554 ...)
+ TODO: check
+CVE-2023-5800 (Vintage, member of the AXIS OS Bug Bounty Program, has found
that the ...)
+ TODO: check
+CVE-2023-5677 (Brandon Rothel from QED Secure Solutions has found that the
VAPIX API ...)
+ TODO: check
+CVE-2023-51504 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
+ TODO: check
+CVE-2023-47170
+ REJECTED
+CVE-2021-46903 (An issue was discovered in LTOS-Web-Interface in Meinberg
LANTIME-Firm ...)
+ TODO: check
+CVE-2021-46902 (An issue was discovered in LTOS-Web-Interface in Meinberg
LANTIME-Firm ...)
+ TODO: check
CVE-2024-25062 (An issue was discovered in libxml2 before 2.11.7 and 2.12.x
before 2.1 ...)
- libxml2 <unfixed>
NOTE: https://gitlab.gnome.org/GNOME/libxml2/-/issues/604
@@ -61899,7 +61979,7 @@ CVE-2023-24678 (A vulnerability in Centralite Pearl
Thermostat 0x04075010 allows
NOT-FOR-US: Centralite Pearl Thermostat
CVE-2023-24677
RESERVED
-CVE-2023-24676 (An issue found in Processwire 3.0.210 allows attackers to
execute arbi ...)
+CVE-2023-24676 (An issue found in ProcessWire 3.0.210 allows attackers to
execute arbi ...)
NOT-FOR-US: Processwire
CVE-2023-24675 (Cross Site Scripting Vulnerability in BluditCMS v.3.14.1
allows attack ...)
NOT-FOR-US: BluditCMS
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5e701c54b9611acaa4daa763ff3019f3ed09ea6e
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5e701c54b9611acaa4daa763ff3019f3ed09ea6e
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
