Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 667a23bd by Salvatore Bonaccorso at 2024-02-26T22:33:39+01:00 Add CVE-2024-25763/opennds - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -48,7 +48,8 @@ CVE-2024-25768 (OpenDMARC 1.4.2 contains a null pointer dereference vulnerabilit CVE-2024-25767 (nanomq 0.21.2 contains a Use-After-Free vulnerability in /nanomq/nng/s ...) NOT-FOR-US: NanoMQ CVE-2024-25763 (openNDS 10.2.0 is vulnerable to Use-After-Free via /openNDS/src/auth.c ...) - TODO: check + - opennds <unfixed> + NOTE: https://github.com/LuMingYinDetect/openNDS_defects/blob/main/openNDS_detect_1.md CVE-2024-25760 (yasm 1.3.0 contains a memory leak via /yasm/tools/genmacro/genmacro.c.) TODO: check CVE-2024-25410 (flusity-CMS 2.33 is vulnerable to Unrestricted Upload of File with Dan ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/667a23bd5769a1f8b61bb15115b466344835eaff -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/667a23bd5769a1f8b61bb15115b466344835eaff You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits