Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
c4d610e8 by Salvatore Bonaccorso at 2024-12-12T23:16:57+01:00
Re-associate some older NFUs to actually node-matrix-js-sdk
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -8941,7 +8941,7 @@ CVE-2024-50557 (A vulnerability has been identified in
RUGGEDCOM RM1224 LTE(4G)
CVE-2024-50386 (Account users in Apache CloudStack by default are allowed to
register ...)
NOT-FOR-US: Apache CloudStack
CVE-2024-50336 (matrix-js-sdk is a Matrix messaging protocol Client-Server SDK
for Jav ...)
- NOT-FOR-US: matrix-js-sdk
+ - node-matrix-js-sdk <removed>
CVE-2024-50331 (An out-of-bounds read vulnerability in Ivanti Avalanche before
6.4.6 a ...)
NOT-FOR-US: Ivanti
CVE-2024-50330 (SQL injection in Ivanti Endpoint Manager before 2024 November
Security ...)
@@ -18110,7 +18110,7 @@ CVE-2024-47779 (Element is a Matrix web client built
using the Matrix React SDK.
CVE-2024-47771 (Element Desktop is a Matrix client for desktop platforms.
Element Desk ...)
NOT-FOR-US: Element Desktop
CVE-2024-47080 (matrix-js-sdk is the Matrix Client-Server SDK for JavaScript
and TypeS ...)
- NOT-FOR-US: matrix-js-sdk
+ - node-matrix-js-sdk <removed>
CVE-2024-45276 (An unauthenticated remote attacker can get read access to
files in the ...)
NOT-FOR-US: MB connect line GmbH
CVE-2024-45275 (The devices contain two hard coded user accounts with
hardcoded passwo ...)
@@ -30141,7 +30141,7 @@ CVE-2024-42553 (A Cross-Site Request Forgery (CSRF) in
the component admin_room_
CVE-2024-42552 (Hotel Management System commit 91caab8 was discovered to
contain a SQL ...)
NOT-FOR-US: Hotel Management System
CVE-2024-42369 (matrix-js-sdk is a Matrix messaging protocol Client-Server SDK
for Jav ...)
- NOT-FOR-US: matrix-js-sdk
+ - node-matrix-js-sdk <removed>
CVE-2024-42336 (Servision - CWE-287: Improper Authentication)
NOT-FOR-US: Servision
CVE-2024-42335 (7Twenty - CWE-79: Improper Neutralization of Input During Web
Page Gen ...)
@@ -135810,7 +135810,7 @@ CVE-2012-10011 (A vulnerability was found in HD FLV
PLayer Plugin up to 1.7 on W
CVE-2023-29530 (Laminas Diactoros provides PSR HTTP Message implementations.
In versio ...)
NOT-FOR-US: Laminas Diactoros
CVE-2023-29529 (matrix-js-sdk is the Matrix Client-Server SDK for JavaScript
and TypeS ...)
- NOT-FOR-US: matrix-js-sdk
+ - node-matrix-js-sdk <removed>
CVE-2023-29528 (XWiki Commons are technical libraries common to several other
top leve ...)
NOT-FOR-US: XWiki
CVE-2023-29527 (XWiki Platform is a generic wiki platform offering runtime
services fo ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c4d610e89ab859ea9c3db85d32942c35011eaec0
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c4d610e89ab859ea9c3db85d32942c35011eaec0
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
