Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
4bb59281 by Moritz Muehlenhoff at 2024-10-05T20:31:15+02:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -34,9 +34,9 @@ CVE-2024-47841 (Improper Limitation of a Pathname to a
Restricted Directory ('Pa
CVE-2024-47840 (Improper Neutralization of Input During Web Page Generation
(XSS or 'C ...)
NOT-FOR-US: Apex MediaWiki extension
CVE-2024-37869 (File Upload vulnerability in Itsourcecode Online Discussion
Forum Proj ...)
- TODO: check
+ NOT-FOR-US: Itsourcecode Online Discussion Forum
CVE-2024-37868 (File Upload vulnerability in Itsourcecode Online Discussion
Forum Proj ...)
- TODO: check
+ NOT-FOR-US: Itsourcecode Online Discussion Forum
CVE-2024-9515 (A vulnerability was found in D-Link DIR-605L 2.13B01 BETA. It
has been ...)
NOT-FOR-US: D-Link
CVE-2024-9514 (A vulnerability was found in D-Link DIR-605L 2.13B01 BETA. It
has been ...)
@@ -52,7 +52,7 @@ CVE-2024-9482 (An out-of-bounds write in the engine module in
AVG/Avast Antiviru
CVE-2024-9481 (An out-of-bounds write in the engine module in AVG/Avast
Antivirus sig ...)
NOT-FOR-US: AVG/Avast Antivirus
CVE-2024-9410 (Ada.cx's Sentry configuration allowed for blind server-side
request fo ...)
- TODO: check
+ NOT-FOR-US: Ada.cx
CVE-2024-9271 (The Re:WP plugin for WordPress is vulnerable to Stored
Cross-Site Scri ...)
NOT-FOR-US: WordPress plugin
CVE-2024-9071 (The Easy Demo Importer \u2013 A Modern One-Click Demo Import
Solution ...)
@@ -68,7 +68,7 @@ CVE-2024-8148 (There is an unvalidated redirect vulnerability
in Esri Portal for
CVE-2024-7801 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
NOT-FOR-US: Microchip
CVE-2024-6400 (Cleartext Storage of Sensitive Information vulnerability in
Finrota Ne ...)
- TODO: check
+ NOT-FOR-US: Finrota Netahsilat
CVE-2024-47790 (** UNSUPPORTED WHEN ASSIGNED ** This vulnerability exists in
D3D Secur ...)
NOT-FOR-US: D3D Security IP Camera
CVE-2024-47789 (** UNSUPPORTED WHEN ASSIGNED ** This vulnerability exists in
D3D Secur ...)
@@ -78,7 +78,7 @@ CVE-2024-47769 (IDURAR is open source ERP CRM accounting
invoicing software. The
CVE-2024-47768 (Lif Authentication Server is a server used by Lif to do
various tasks ...)
NOT-FOR-US: Lif Auth Server
CVE-2024-47765 (Minecraft MOTD Parser is a PHP library to parse minecraft
server motd. ...)
- TODO: check
+ NOT-FOR-US: Minecraft MOTD Parser
CVE-2024-47764 (cookie is a basic HTTP cookie parser and serializer for HTTP
servers. ...)
- node-cookie <unfixed>
NOTE:
https://github.com/jshttp/cookie/security/advisories/GHSA-pxg6-pf52-xh8x
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4bb592814a19f4443714e6feb6a0fd6fa63a05d0
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4bb592814a19f4443714e6feb6a0fd6fa63a05d0
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
