[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) Sat, 15 Jun 2024 13:13:12 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
3f3b5155 by security tracker role at 2024-06-15T20:12:27+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,39 @@
+CVE-2024-6016 (A vulnerability, which was classified as critical, has been 
found in i ...)
+       TODO: check
+CVE-2024-6015 (A vulnerability classified as critical was found in 
itsourcecode Onlin ...)
+       TODO: check
+CVE-2024-6014 (A vulnerability classified as critical has been found in 
itsourcecode  ...)
+       TODO: check
+CVE-2024-6013 (A vulnerability was found in itsourcecode Online Book Store 
1.0. It ha ...)
+       TODO: check
+CVE-2024-6009 (A vulnerability has been found in itsourcecode Event Calendar 
1.0 and  ...)
+       TODO: check
+CVE-2024-6008 (A vulnerability, which was classified as critical, was found in 
itsour ...)
+       TODO: check
+CVE-2024-6007 (A vulnerability classified as critical has been found in 
Netentsec NS- ...)
+       TODO: check
+CVE-2024-6006 (A vulnerability was found in ZKTeco ZKBio CVSecurity V5000 
4.1.0. It h ...)
+       TODO: check
+CVE-2024-6005 (A vulnerability was found in ZKTeco ZKBio CVSecurity V5000 
4.1.0. It h ...)
+       TODO: check
+CVE-2024-5858 (The AI Infographic Maker plugin for WordPress is vulnerable to 
unautho ...)
+       TODO: check
+CVE-2024-5611 (The Stratum \u2013 Elementor Widgets plugin for WordPress is 
vulnerabl ...)
+       TODO: check
+CVE-2024-4551 (The Video Gallery \u2013 YouTube Playlist, Channel Gallery by 
YotuWP p ...)
+       TODO: check
+CVE-2024-4258 (The Video Gallery \u2013 YouTube Playlist, Channel Gallery by 
YotuWP p ...)
+       TODO: check
+CVE-2024-4095 (The Collapse-O-Matic plugin for WordPress is vulnerable to 
Stored Cros ...)
+       TODO: check
+CVE-2024-3105 (The Woody code snippets \u2013 Insert Header Footer Code, 
AdSense Ads  ...)
+       TODO: check
+CVE-2024-31870 (IBM Db2 for i 7.2, 7.3, 7.4, and 7.5 supplies user defined 
table funct ...)
+       TODO: check
+CVE-2024-2695 (The Shariff Wrapper plugin for WordPress is vulnerable to 
Stored Cross ...)
+       TODO: check
+CVE-2024-27275 (IBM i 7.2, 7.3, 7.4, and 7.5 contains a local privilege 
escalation vul ...)
+       TODO: check
 CVE-2024-6003 (A vulnerability was found in Guangdong Baolun Electronics IP 
Network B ...)
        NOT-FOR-US: Guangdong Baolun Electronics IP Network Broadcasting 
Service Platform
 CVE-2024-6000 (The FooEvents for WooCommerce plugin for WordPress is 
vulnerable to un ...)
@@ -1620,7 +1656,7 @@ CVE-2023-38533 (A vulnerability has been identified in 
TIA Administrator (All ve
 CVE-2023-33922 (Missing Authorization vulnerability in Elementor Elementor 
Website Bui ...)
        NOT-FOR-US: WordPress plugin
 CVE-2024-5702 (Memory corruption in the networking stack could have led to a 
potentia ...)
-       {DSA-5709-1 DLA-3825-1}
+       {DSA-5711-1 DSA-5709-1 DLA-3825-1}
        - firefox-esr 115.12.0esr-1
        - thunderbird 1:115.12.0-1
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2024-26/#CVE-2024-5702
@@ -1629,7 +1665,7 @@ CVE-2024-5701 (Memory safety bugs present in Firefox 126. 
Some of these bugs sho
        - firefox 127.0-1
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2024-25/#CVE-2024-5701
 CVE-2024-5700 (Memory safety bugs present in Firefox 126, Firefox ESR 115.11, 
and Thu ...)
-       {DSA-5709-1 DLA-3825-1}
+       {DSA-5711-1 DSA-5709-1 DLA-3825-1}
        - firefox 127.0-1
        - firefox-esr 115.12.0esr-1
        - thunderbird 1:115.12.0-1
@@ -1646,7 +1682,7 @@ CVE-2024-5697 (A website was able to detect when a user 
took a screenshot of a p
        - firefox 127.0-1
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2024-25/#CVE-2024-5697
 CVE-2024-5696 (By manipulating the text in an `&lt;input&gt;` tag, an attacker 
could  ...)
-       {DSA-5709-1 DLA-3825-1}
+       {DSA-5711-1 DSA-5709-1 DLA-3825-1}
        - firefox 127.0-1
        - firefox-esr 115.12.0esr-1
        - thunderbird 1:115.12.0-1
@@ -1660,7 +1696,7 @@ CVE-2024-5694 (An attacker could have caused a 
use-after-free in the JavaScript
        - firefox 127.0-1
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2024-25/#CVE-2024-5694
 CVE-2024-5693 (Offscreen Canvas did not properly track cross-origin tainting, 
which c ...)
-       {DSA-5709-1 DLA-3825-1}
+       {DSA-5711-1 DSA-5709-1 DLA-3825-1}
        - firefox 127.0-1
        - firefox-esr 115.12.0esr-1
        - thunderbird 1:115.12.0-1
@@ -1675,7 +1711,7 @@ CVE-2024-5692 (On Windows 10, when using the 'Save As' 
functionality, an attacke
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2024-26/#CVE-2024-5692
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2024-28/#CVE-2024-5692
 CVE-2024-5691 (By tricking the browser with a `X-Frame-Options` header, a 
sandboxed i ...)
-       {DSA-5709-1 DLA-3825-1}
+       {DSA-5711-1 DSA-5709-1 DLA-3825-1}
        - firefox 127.0-1
        - firefox-esr 115.12.0esr-1
        - thunderbird 1:115.12.0-1
@@ -1683,7 +1719,7 @@ CVE-2024-5691 (By tricking the browser with a 
`X-Frame-Options` header, a sandbo
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2024-26/#CVE-2024-5691
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2024-28/#CVE-2024-5691
 CVE-2024-5690 (By monitoring the time certain operations take, an attacker 
could have ...)
-       {DSA-5709-1 DLA-3825-1}
+       {DSA-5711-1 DSA-5709-1 DLA-3825-1}
        - firefox 127.0-1
        - firefox-esr 115.12.0esr-1
        - thunderbird 1:115.12.0-1
@@ -1694,7 +1730,7 @@ CVE-2024-5689 (In addition to detecting when a user was 
taking a screenshot (XXX
        - firefox 127.0-1
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2024-25/#CVE-2024-5689
 CVE-2024-5688 (If a garbage collection was triggered at the right time, a 
use-after-f ...)
-       {DSA-5709-1 DLA-3825-1}
+       {DSA-5711-1 DSA-5709-1 DLA-3825-1}
        - firefox 127.0-1
        - firefox-esr 115.12.0esr-1
        - thunderbird 1:115.12.0-1



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3f3b5155c8f098a60e1cb429ca94d022af0ed739

-- 
This project does not include diff previews in email notifications.
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3f3b5155c8f098a60e1cb429ca94d022af0ed739
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] automatic update

Reply via email to