Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
76bcfa9b by security tracker role at 2024-08-05T20:12:33+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,20 +1,131 @@
-CVE-2024-7383 [NBD server improper certificate validation]
+CVE-2024-7397 (Improper filering of special characters result in a command
('command ...)
+ TODO: check
+CVE-2024-7396 (Missing encryption of sensitive data in Korenix JetPort 5601v3
allows ...)
+ TODO: check
+CVE-2024-7395 (An authentication bypass vulnerability in Korenix JetPort
5601v3 allow ...)
+ TODO: check
+CVE-2024-6915 (JFrog Artifactory versions below 7.90.6, 7.84.20, 7.77.14,
7.71.23, 7. ...)
+ TODO: check
+CVE-2024-6865
+ REJECTED
+CVE-2024-6361 (Improper Neutralization vulnerability (XSS) has been discovered
in Ope ...)
+ TODO: check
+CVE-2024-4607 (Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel
Driver, Arm ...)
+ TODO: check
+CVE-2024-42350 (Biscuit is an authorization token with decentralized
verification, off ...)
+ TODO: check
+CVE-2024-41960 (mailcow: dockerized is an open source groupware/email suite
based on d ...)
+ TODO: check
+CVE-2024-41959 (mailcow: dockerized is an open source groupware/email suite
based on d ...)
+ TODO: check
+CVE-2024-41958 (mailcow: dockerized is an open source groupware/email suite
based on d ...)
+ TODO: check
+CVE-2024-41381 (microweber 2.0.16 was discovered to contain a Cross Site
Scripting (XS ...)
+ TODO: check
+CVE-2024-41380 (microweber 2.0.16 was discovered to contain a Cross Site
Scripting (XS ...)
+ TODO: check
+CVE-2024-41376 (dzzoffice 2.02.1 is vulnerable to Directory Traversal via
user/space/a ...)
+ TODO: check
+CVE-2024-41200 (A segmentation fault in KMPlayer v4.2.2.65 allows attackers to
cause a ...)
+ TODO: check
+CVE-2024-40531 (An issue in UAB Lexita PanteraCRM CMS v.401.152 and Patera CRM
CMS v.4 ...)
+ TODO: check
+CVE-2024-40530 (Insecure Permissions vulnerability in UAB Lexita PanteraCRM
CMS v.401. ...)
+ TODO: check
+CVE-2024-40498 (SQL Injection vulnerability in PuneethReddyHC Online Shopping
sysstem ...)
+ TODO: check
+CVE-2024-40096 (The com.cascadialabs.who (aka Who - Caller ID, Spam Block)
application ...)
+ TODO: check
+CVE-2024-33034 (Memory corruption can occur if VBOs hold outdated or invalid
GPU SMMU ...)
+ TODO: check
+CVE-2024-33028 (Memory corruption as fence object may still be accessed in
timeline de ...)
+ TODO: check
+CVE-2024-33027 (Memory corruption can occur when arbitrary user-space app
gains kernel ...)
+ TODO: check
+CVE-2024-33026 (Transient DOS while parsing probe response and assoc response
frame wh ...)
+ TODO: check
+CVE-2024-33025 (Transient DOS while parsing the BSS parameter change count or
MLD capa ...)
+ TODO: check
+CVE-2024-33024 (Transient DOS while parsing the ML IE when a beacon with
length field ...)
+ TODO: check
+CVE-2024-33023 (Memory corruption while creating a fence to wait on timeline
events, a ...)
+ TODO: check
+CVE-2024-33022 (Memory corruption while allocating memory in HGSL driver.)
+ TODO: check
+CVE-2024-33021 (Memory corruption while processing IOCTL call to set metainfo.)
+ TODO: check
+CVE-2024-33020 (Transient DOS while processing TID-to-link mapping IE
elements.)
+ TODO: check
+CVE-2024-33019 (Transient DOS while parsing the received TID-to-link mapping
action fr ...)
+ TODO: check
+CVE-2024-33018 (Transient DOS while parsing the received TID-to-link mapping
element o ...)
+ TODO: check
+CVE-2024-33015 (Transient DOS while parsing SCAN RNR IE when bytes received
from AP is ...)
+ TODO: check
+CVE-2024-33014 (Transient DOS while parsing ESP IE from beacon/probe response
frame.)
+ TODO: check
+CVE-2024-33013 (Transient DOS when driver accesses the ML IE memory and offset
value i ...)
+ TODO: check
+CVE-2024-33012 (Transient DOS while parsing the multiple MBSSID IEs from the
beacon, w ...)
+ TODO: check
+CVE-2024-33011 (Transient DOS while parsing the MBSSID IE from the beacons,
when the M ...)
+ TODO: check
+CVE-2024-33010 (Transient DOS while parsing fragments of MBSSID IE from beacon
frame.)
+ TODO: check
+CVE-2024-2937 (Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel
Driver, Arm ...)
+ TODO: check
+CVE-2024-23384 (Memory corruption when the mapped pages in VBO are still
mapped after ...)
+ TODO: check
+CVE-2024-23383 (Memory corruption when kernel driver attempts to trigger
hardware fenc ...)
+ TODO: check
+CVE-2024-23382 (Memory corruption while processing graphics kernel driver
request to c ...)
+ TODO: check
+CVE-2024-23381 (Memory corruption when memory mapped in a VBO is not unmapped
by the G ...)
+ TODO: check
+CVE-2024-23357 (Transient DOS while importing a PKCS#8-encoded RSA key with
zero bytes ...)
+ TODO: check
+CVE-2024-23356 (Memory corruption during session sign renewal request calls in
HLOS.)
+ TODO: check
+CVE-2024-23355 (Memory corruption when keymaster operation imports a shared
key.)
+ TODO: check
+CVE-2024-23353 (Transient DOS while decoding attach reject message received by
UE, whe ...)
+ TODO: check
+CVE-2024-23352 (Transient DOS when NAS receives ODAC criteria of length 1 and
type 1 i ...)
+ TODO: check
+CVE-2024-23350 (Permanent DOS when DL NAS transport receives multiple payloads
such th ...)
+ TODO: check
+CVE-2024-21980 (Improper restriction of write operations in SNP firmware could
allow a ...)
+ TODO: check
+CVE-2024-21978 (Improper input validation in SEV-SNP could allow a malicious
hyperviso ...)
+ TODO: check
+CVE-2024-21481 (Memory corruption when preparing a shared memory notification
for a me ...)
+ TODO: check
+CVE-2024-21479 (Transient DOS during music playback of ALAC content.)
+ TODO: check
+CVE-2024-21467 (Information disclosure while handling beacon probe frame
during scan e ...)
+ TODO: check
+CVE-2024-21459 (Information disclosure while handling beacon or probe response
frame i ...)
+ TODO: check
+CVE-2023-31355 (Improper restriction of write operations in SNP firmware could
allow a ...)
+ TODO: check
+CVE-2024-7383 (A flaw was found in libnbd. The client did not always correctly
verify ...)
- libnbd <unfixed>
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2302865
NOTE:
https://lists.libguestfs.org/archives/list/guestfs%40lists.libguestfs.org/message/LHR3BW6RJ7K4BJBQIYV3GTZLSY27VZO2/
TODO: queried Red Hat about scope of the CVE in relation to issues
reported in mailinglist post
-CVE-2024-36448
+CVE-2024-36448 (** UNSUPPORTED WHEN ASSIGNED ** Server-Side Request Forgery
(SSRF) vul ...)
NOT-FOR-US: Apache IoTDB
-CVE-2024-6472
+CVE-2024-6472 (Certificate Validation user interface in LibreOffice allows
potential ...)
+ {DSA-5737-1}
- libreoffice 4:24.2.5-1
NOTE:
https://www.libreoffice.org/about-us/security/advisories/cve-2024-6472/
-CVE-2024-42010 [information leak (access to remote content) via insufficient
CSS filtering]
+CVE-2024-42010 (mod_css_styles in Roundcube through 1.5.7 and 1.6.x through
1.6.7 allo ...)
- roundcube 1.6.8+dfsg-1 (bug #1077969)
NOTE:
https://github.com/roundcube/roundcubemail/commit/602d0f566eb39b6dcb739ad78323ec434a3b92ce
-CVE-2024-42009 [XSS vulnerability in post-processing of sanitized HTML content]
+CVE-2024-42009 (A Cross-Site Scripting vulnerability in Roundcube through
1.5.7 and 1. ...)
- roundcube 1.6.8+dfsg-1 (bug #1077969)
NOTE:
https://github.com/roundcube/roundcubemail/commit/68af7c864a36e1941764238dac440ab0d99a8d26
-CVE-2024-42008 [XSS vulnerability in serving of attachments other than HTML or
SVG]
+CVE-2024-42008 (A Cross-Site Scripting vulnerability in
rcmail_action_mail_get->run() ...)
- roundcube 1.6.8+dfsg-1 (bug #1077969)
NOTE:
https://github.com/roundcube/roundcubemail/commit/89c8fe9ae9318c015807fbcbf7e39555fb30885d
CVE-2024-7470 (A vulnerability was found in Raisecom MSG1200, MSG2100E,
MSG2200 and M ...)
@@ -67,7 +178,7 @@ CVE-2024-39713 (A Server-Side Request Forgery (SSRF) affects
Rocket.Chat's Twili
NOT-FOR-US: Rocket.Chat
CVE-2024-2232 (The lacks CSRF checks allowing a user to invite any user to
any group ...)
NOT-FOR-US: WordPress plugin
-CVE-2024-38856
+CVE-2024-38856 (Incorrect Authorization vulnerability in Apache OFBiz. This
issue aff ...)
NOT-FOR-US: Apache OFBiz
CVE-2024-42447 (Insufficient Session Expiration vulnerability in Apache
Airflow Provid ...)
- airflow <itp> (bug #819700)
@@ -91,7 +202,7 @@ CVE-2024-7446 (A vulnerability, which was classified as
critical, was found in i
NOT-FOR-US: itsourcecode Placement Management System
CVE-2024-6331 (stitionai/devika main branch as of commit
cdfb782b0e634b773b10963c8034 ...)
NOT-FOR-US: stitionai/devika
-CVE-2024-7409
+CVE-2024-7409 (A flaw was found in the QEMU NBD Server. This vulnerability
allows a d ...)
- qemu <unfixed>
[bookworm] - qemu <no-dsa> (Minor issue)
[bullseye] - qemu <no-dsa> (Minor issue)
@@ -2227,7 +2338,7 @@ CVE-2024-1804 (The Tutor LMS \u2013 Migration Tool plugin
for WordPress is vulne
NOT-FOR-US: WordPress plugin
CVE-2024-1798 (The Tutor LMS \u2013 Migration Tool plugin for WordPress is
vulnerable ...)
NOT-FOR-US: WordPress plugin
-CVE-2024-7128 (A flaw was found in the Openshift console. Several endpoints in
the ap ...)
+CVE-2024-7128 (A flaw was found in the OpenShift console. Several endpoints in
the ap ...)
NOT-FOR-US: Openshift
CVE-2024-7062 (Nimble Commander suffers from a privilege escalation
vulnerability due ...)
NOT-FOR-US: Nimble Commander
@@ -3913,6 +4024,7 @@ CVE-2024-21149 (Vulnerability in the Oracle Enterprise
Asset Management product
CVE-2024-21148 (Vulnerability in the Oracle Applications Framework product of
Oracle E ...)
NOT-FOR-US: Oracle
CVE-2024-21147 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK,
Oracle Gr ...)
+ {DSA-5736-1}
- openjdk-8 8u422-b05-1
- openjdk-11 11.0.24+8-1
- openjdk-17 17.0.12+7-1
@@ -3920,11 +4032,13 @@ CVE-2024-21147 (Vulnerability in the Oracle Java SE,
Oracle GraalVM for JDK, Ora
CVE-2024-21146 (Vulnerability in the Oracle Trade Management product of Oracle
E-Busin ...)
NOT-FOR-US: Oracle
CVE-2024-21145 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK,
Oracle Gr ...)
+ {DSA-5736-1}
- openjdk-8 8u422-b05-1
- openjdk-11 11.0.24+8-1
- openjdk-17 17.0.12+7-1
- openjdk-21 21.0.3+9-1
CVE-2024-21144 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise
Edition ...)
+ {DSA-5736-1}
- openjdk-8 8u422-b05-1
- openjdk-11 11.0.24+8-1
CVE-2024-21143 (Vulnerability in the Oracle iStore product of Oracle
E-Business Suite ...)
@@ -3934,6 +4048,7 @@ CVE-2024-21142 (Vulnerability in the MySQL Server product
of Oracle MySQL (compo
CVE-2024-21141 (Vulnerability in the Oracle VM VirtualBox product of Oracle
Virtualiza ...)
- virtualbox 7.0.20-dfsg-1
CVE-2024-21140 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK,
Oracle Gr ...)
+ {DSA-5736-1}
- openjdk-8 8u422-b05-1
- openjdk-11 11.0.24+8-1
- openjdk-17 17.0.12+7-1
@@ -3941,6 +4056,7 @@ CVE-2024-21140 (Vulnerability in the Oracle Java SE,
Oracle GraalVM for JDK, Ora
CVE-2024-21139 (Vulnerability in the Oracle Business Intelligence Enterprise
Edition p ...)
NOT-FOR-US: Oracle
CVE-2024-21138 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK,
Oracle Gr ...)
+ {DSA-5736-1}
- openjdk-8 8u422-b05-1
- openjdk-11 11.0.24+8-1
- openjdk-17 17.0.12+7-1
@@ -3958,6 +4074,7 @@ CVE-2024-21133 (Vulnerability in the Oracle Reports
Developer product of Oracle
CVE-2024-21132 (Vulnerability in the Oracle Purchasing product of Oracle
E-Business Su ...)
NOT-FOR-US: Oracle
CVE-2024-21131 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK,
Oracle Gr ...)
+ {DSA-5736-1}
- openjdk-8 8u422-b05-1
- openjdk-11 11.0.24+8-1
- openjdk-17 17.0.12+7-1
@@ -10247,7 +10364,7 @@ CVE-2024-6182 (A vulnerability was found in LabVantage
LIMS 2017. It has been ra
NOT-FOR-US: LabVantage LIMS
CVE-2024-6181 (A vulnerability was found in LabVantage LIMS 2017. It has been
declare ...)
NOT-FOR-US: LabVantage LIMS
-CVE-2024-6162 (A vulnerability was found in Undertow. URL-encoded request path
inform ...)
+CVE-2024-6162 (A vulnerability was found in Undertow, where URL-encoded
request paths ...)
- undertow <unfixed> (bug #1077546)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2293069
CVE-2024-5886
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/76bcfa9b8ba9e0abe89062def384aafb0a21f127
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/76bcfa9b8ba9e0abe89062def384aafb0a21f127
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
