Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
4b7e5506 by Salvatore Bonaccorso at 2024-07-10T06:51:01+02:00
Add information on CVE-2024-3596
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -115,7 +115,12 @@ CVE-2024-3604 (The OSM \u2013 OpenStreetMap plugin for
WordPress is vulnerable t
CVE-2024-3603 (The OSM \u2013 OpenStreetMap plugin for WordPress is vulnerable
to Sto ...)
NOT-FOR-US: WordPress plugin
CVE-2024-3596 (RADIUS Protocol under RFC 2865 is susceptible to forgery
attacks by a ...)
- TODO: check
+ - freeradius 3.2.5+dfsg-1
+ NOTE: https://www.blastradius.fail/
+ NOTE: https://kb.cert.org/vuls/id/456537
+ NOTE: https://www.openwall.com/lists/oss-security/2024/07/09/4
+ NOTE: CVE is for the RADIUS Protocol issue under RFC 2865, but track
for time beeing
+ NOTE: sources which add mitigations for the "BlastRADIUS protocol
vulnerability".
CVE-2024-3563 (The Genesis Blocks plugin for WordPress is vulnerable to Stored
Cross- ...)
NOT-FOR-US: WordPress plugin
CVE-2024-3228 (The Social Sharing Plugin \u2013 Kiwi plugin for WordPress is
vulnerab ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4b7e55069bceb0df62c712e3c7114b966ffed622
--
This project does not include diff previews in email notifications.
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4b7e55069bceb0df62c712e3c7114b966ffed622
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
