Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
9df3a591 by Moritz Muehlenhoff at 2025-03-21T13:42:22+01:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -499,7 +499,7 @@ CVE-2024-6825 (BerriAI/litellm version 1.40.12 contains a
vulnerability that all
CVE-2024-6583 (A path traversal vulnerability exists in the latest version of
stangir ...)
NOT-FOR-US: stangirard/quivr
CVE-2024-6577 (In the latest version of pytorch/serve, the script
'upload_results_to_ ...)
- TODO: check
+ NOT-FOR-US: pytorch/serve
CVE-2024-6483 (A vulnerability in the `runs/delete-batch` endpoint of
aimhubio/aim ve ...)
NOT-FOR-US: aimhubio/aim
CVE-2024-5752 (A path traversal vulnerability exists in stitionai/devika,
specificall ...)
@@ -641,7 +641,7 @@ CVE-2024-11821 (A privilege escalation vulnerability exists
in langgenius/dify v
CVE-2024-11603 (A Server-Side Request Forgery (SSRF) vulnerability exists in
lm-sys/fa ...)
NOT-FOR-US: lm-sys/fastchat
CVE-2024-11602 (A Cross-Origin Resource Sharing (CORS) vulnerability exists in
feast-d ...)
- TODO: check
+ NOT-FOR-US: Feast
CVE-2024-11449 (A vulnerability in haotian-liu/llava version 1.2.0 (LLaVA-1.6)
allows ...)
NOT-FOR-US: haotian-liu/llava
CVE-2024-11441 (A stored cross-site scripting (XSS) vulnerability exists in
Serge vers ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9df3a591d24c2325e648ab19dc2a8b00fe1d8b2b
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9df3a591d24c2325e648ab19dc2a8b00fe1d8b2b
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
