Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
50713fd2 by Salvatore Bonaccorso at 2024-07-03T22:58:05+02:00
Track two ckeck-mk issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -20,7 +20,7 @@ CVE-2024-6126 (A flaw was found in the cockpit package. This
flaw allows an auth
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2292897
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2290859
CVE-2024-6052 (Stored XSS in Checkmk before versions 2.3.0p8, 2.2.0p29,
2.1.0p45, and ...)
- TODO: check
+ - check-mk <removed>
CVE-2024-5887 (Cross-Site Request Forgery (CSRF) in stitionai/devika)
NOT-FOR-US: stitionai/devika
CVE-2024-5821 (Improper Access Control in stitionai/devika)
@@ -190,7 +190,7 @@ CVE-2024-39143 (A stored cross-site scripting (XSS)
vulnerability exists in Resi
CVE-2024-39119 (idccms v1.35 was discovered to contain a Cross-Site Request
Forgery (C ...)
NOT-FOR-US: idccms
CVE-2024-38857 (Improper neutralization of input in Checkmk before versions
2.3.0p8, 2 ...)
- TODO: check
+ - check-mk <removed>
CVE-2024-38537 (Fides is an open-source privacy engineering platform.
`fides.js`, a cl ...)
NOT-FOR-US: Fides
CVE-2024-38519 (`yt-dlp` is a command-line audio/video downloader. Prior to
version 20 ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/50713fd2fc60fe757a1734c2c96a21d95bae8cdb
--
This project does not include diff previews in email notifications.
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/50713fd2fc60fe757a1734c2c96a21d95bae8cdb
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
