Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
90318d06 by Salvatore Bonaccorso at 2025-02-21T14:23:11+01:00
Four CVEs for zoneminder addressed in unstable upload
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -52302,7 +52302,7 @@ CVE-2024-6823 (The Media Library Assistant plugin for
WordPress is vulnerable to
CVE-2024-6724 (The Generate Images WordPress plugin before 5.2.8 does not
sanitise a ...)
NOT-FOR-US: WordPress plugin
CVE-2024-43360 (ZoneMinder is a free, open source closed-circuit television
software a ...)
- - zoneminder <unfixed> (unimportant)
+ - zoneminder 1.36.35+dfsg1-1 (unimportant)
NOTE: Only supported for trusted users/behind auth
NOTE:
https://github.com/ZoneMinder/zoneminder/security/advisories/GHSA-9cmr-7437-v9fj
NOTE:
https://github.com/ZoneMinder/zoneminder/commit/677f6a31551f128554f7b0110a52fd76453a657a
(1.36.34)
@@ -52310,13 +52310,13 @@ CVE-2024-43360 (ZoneMinder is a free, open source
closed-circuit television soft
NOTE:
https://github.com/ZoneMinder/zoneminder/commit/a194fe81d34c5eea2ab1dc18dc8df615fca634a6
(1.37.61)
NOTE:
https://github.com/ZoneMinder/zoneminder/commit/de8f387207e9c506e8e8007eda725741a25601c5
(1.37.61)
CVE-2024-43359 (ZoneMinder is a free, open source closed-circuit television
software a ...)
- - zoneminder <unfixed> (unimportant)
+ - zoneminder 1.36.35+dfsg1-1 (unimportant)
NOTE: Only supported for trusted users/behind auth
NOTE:
https://github.com/ZoneMinder/zoneminder/security/advisories/GHSA-pjjm-3qxp-6hj8
NOTE:
https://github.com/ZoneMinder/zoneminder/commit/6cc64dddff6144a98680f65ecf8dc249028431af
(1.36.34)
NOTE:
https://github.com/ZoneMinder/zoneminder/commit/b51c5df0cb869ca48fccfc6e6fd7c19bf717ecd2
(1.37.61)
CVE-2024-43358 (ZoneMinder is a free, open source closed-circuit television
software a ...)
- - zoneminder <unfixed> (unimportant)
+ - zoneminder 1.36.35+dfsg1-1 (unimportant)
NOTE: Only supported for trusted users/behind auth
NOTE:
https://github.com/ZoneMinder/zoneminder/security/advisories/GHSA-6rrw-66rf-6g5f
NOTE:
https://github.com/ZoneMinder/zoneminder/commit/062cf568a33fb6a8604ec327b1de8bb2e0d1ff77
(1.36.34)
@@ -52588,7 +52588,7 @@ CVE-2023-7249 (Improper Limitation of a Pathname to a
Restricted Directory ('Pat
CVE-2023-48171 (An issue in OWASP DefectDojo before v.1.5.3.1 allows a remote
attacker ...)
NOT-FOR-US: OWASP DefectDojo
CVE-2023-41884 (ZoneMinder is a free, open source Closed-circuit television
software a ...)
- - zoneminder <unfixed> (unimportant)
+ - zoneminder 1.36.35+dfsg1-1 (unimportant)
NOTE: Only supported for trusted users/behind auth
NOTE:
https://github.com/ZoneMinder/zoneminder/security/advisories/GHSA-2qp3-fwpv-mc96
NOTE:
https://github.com/ZoneMinder/zoneminder/commit/677f6a31551f128554f7b0110a52fd76453a657a
(1.36.34)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/90318d06d26f501c0e20003f900b6ec0c98aa792
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/90318d06d26f501c0e20003f900b6ec0c98aa792
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
