Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
965f2242 by Salvatore Bonaccorso at 2024-02-26T21:22:50+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
CVE-2024-27092 (Hoppscotch is an API development ecosystem. Due to lack of
validation ...)
- TODO: check
+ NOT-FOR-US: Hoppscotch
CVE-2024-27088 (es5-ext contains ECMAScript 5 extensions. Passing functions
with very ...)
- node-es5-ext <unfixed>
NOTE:
https://github.com/medikoo/es5-ext/security/advisories/GHSA-4gmj-3p3h-gm8h
@@ -7,11 +7,11 @@ CVE-2024-27088 (es5-ext contains ECMAScript 5 extensions.
Passing functions with
NOTE:
https://github.com/medikoo/es5-ext/commit/3551cdd7b2db08b1632841f819d008757d28e8e2
(v1.10.63)
NOTE:
https://github.com/medikoo/es5-ext/commit/a52e95736690ad1d465ebcd9791d54570e294602
(v1.10.63)
CVE-2024-27087 (Kirby is a content management system. The new link field
introduced in ...)
- TODO: check
+ NOT-FOR-US: Kirby CMS
CVE-2024-27084
REJECTED
CVE-2024-27081 (ESPHome is a system to control your ESP8266/ESP32. A security
misconfi ...)
- TODO: check
+ NOT-FOR-US: ESPHome
CVE-2024-26468 (A DOM based cross-site scripting (XSS) vulnerability in the
component ...)
TODO: check
CVE-2024-26467 (A DOM based cross-site scripting (XSS) vulnerability in the
component ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/965f2242fbd02f5439fa5ab166ef3c6b8dadf3ca
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/965f2242fbd02f5439fa5ab166ef3c6b8dadf3ca
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
