Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
954a063c by Salvatore Bonaccorso at 2025-02-11T09:18:15+01:00
Add CVE-2024-11831/node-serialize-javascript
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -435,7 +435,9 @@ CVE-2024-13011 (The WP Foodbakery plugin for WordPress is
vulnerable to arbitrar
CVE-2024-13010 (The WP Foodbakery plugin for WordPress is vulnerable to
Reflected Cros ...)
NOT-FOR-US: WordPress plugin
CVE-2024-11831 (A flaw was found in npm-serialize-javascript. The
vulnerability occurs ...)
- TODO: check
+ - node-serialize-javascript <unfixed>
+ NOTE: https://github.com/yahoo/serialize-javascript/pull/173
+ NOTE: Fixed by:
https://github.com/yahoo/serialize-javascript/commit/f27d65d3de42affe2aac14607066c293891cec4e
(v6.0.2)
CVE-2024-11621 (Missing certificate validation in Devolutions Remote Desktop
Manager o ...)
NOT-FOR-US: Devolutions
CVE-2024-10649 (wandb/openui latest commit
c945bb859979659add5f490a874140ad17c56a5d co ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/954a063cd2f07b01857214cb385bc0c0650c16bf
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/954a063cd2f07b01857214cb385bc0c0650c16bf
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
