Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
74bdb9ac by security tracker role at 2024-12-16T08:11:57+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,43 @@
+CVE-2024-9679 (A Hardcoded Cryptographic key vulnerability existed in DLP
Extension 1 ...)
+ TODO: check
+CVE-2024-9678 (An SQL Injection vulnerability existed in DLP Extension
11.11.1.3. Th ...)
+ TODO: check
+CVE-2024-8798 (No proper validation of the length of user input in
olcp_ind_handler i ...)
+ TODO: check
+CVE-2024-8650 (An issue was discovered in GitLab CE/EE affecting all versions
from 15 ...)
+ TODO: check
+CVE-2024-8116 (An issue has been discovered in GitLab CE/EE affecting all
versions fr ...)
+ TODO: check
+CVE-2024-5333 (The Events Calendar WordPress plugin before 6.8.2.1 is missing
access ...)
+ TODO: check
+CVE-2024-56112 (CyberPanel (aka Cyber Panel) before f0cf648 allows XSS via
token or us ...)
+ TODO: check
+CVE-2024-56087 (An issue was discovered in Logpoint before 7.5.0.
Authenticated users ...)
+ TODO: check
+CVE-2024-56086 (An issue was discovered in Logpoint before 7.5.0.
Authenticated users ...)
+ TODO: check
+CVE-2024-56085 (An issue was discovered in Logpoint before 7.5.0.
Authenticated users ...)
+ TODO: check
+CVE-2024-56084 (An issue was discovered in Logpoint UniversalNormalizer before
5.7.0. ...)
+ TODO: check
+CVE-2024-56083 (Cognition Devin before 2024-12-12 provides write access to
code by an ...)
+ TODO: check
+CVE-2024-53376 (CyberPanel before 2.3.8 allows remote authenticated users to
execute a ...)
+ TODO: check
+CVE-2024-12646 (The topm-client from Chunghwa Telecom has an Arbitrary File
Delete vul ...)
+ TODO: check
+CVE-2024-12645 (The topm-client from Chunghwa Telecom has an Arbitrary File
Read vulne ...)
+ TODO: check
+CVE-2024-12644 (The tbm-client from Chunghwa Telecom has an Arbitrary File
vulnerabili ...)
+ TODO: check
+CVE-2024-12643 (The tbm-client from Chunghwa Telecom has an Arbitrary File
Delete vuln ...)
+ TODO: check
+CVE-2024-12642 (TenderDocTransfer from Chunghwa Telecom has an Arbitrary File
Write vu ...)
+ TODO: check
+CVE-2024-12641 (TenderDocTransfer from Chunghwa Telecom has a Reflected
Cross-site scr ...)
+ TODO: check
+CVE-2024-11841 (The Tithe.ly Giving Button WordPress plugin through 1.1 does
not valid ...)
+ TODO: check
CVE-2024-7701 (Use of Password Hash With Insufficient Computational Effort
vulnerabil ...)
- percona-toolkit <unfixed>
TODO: check details on upstream reports
@@ -1235,6 +1275,7 @@ CVE-2024-47607 (GStreamer is a library for constructing
graphs of media-handling
NOTE: Fixed by:
https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/2838374d6ee4a0c9c4c4221ac46d5c1688f26e59
NOTE: Fixed by:
https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/804eca458fb547942ed70b88c021b996be9228a2
(1.24.10)
CVE-2024-47606 (GStreamer is a library for constructing graphs of
media-handling compo ...)
+ {DLA-3994-1}
- gstreamer1.0 1.24.10-1
- gstreamer0.10 <removed>
- gst-plugins-good1.0 1.24.10-1
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/74bdb9ac8c8075f5abdfaa2e5184ef917b973bd5
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/74bdb9ac8c8075f5abdfaa2e5184ef917b973bd5
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
