[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Apr 12 09:12:04 BST 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
60b95ffd by security tracker role at 2024-04-12T08:11:50+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,47 @@
+CVE-2024-3400 (A command injection vulnerability in the GlobalProtect feature of Palo ...)
+ TODO: check
+CVE-2024-30850 (An issue in tiagorlampert CHAOS v5.0.1 allows a remote attacker to exe ...)
+ TODO: check
+CVE-2024-30614 (An issue in Ametys CMS v4.5.0 and before allows attackers to obtain se ...)
+ TODO: check
+CVE-2024-2801 (The Shopkeeper Extender plugin for WordPress is vulnerable to Stored C ...)
+ TODO: check
+CVE-2024-2137 (The All-in-One Addons for Elementor \u2013 WidgetKit plugin for WordPr ...)
+ TODO: check
+CVE-2024-29400 (An issue was discovered in RuoYi v4.5.1, allows attackers to obtain se ...)
+ TODO: check
+CVE-2024-28458 (Null Pointer Dereference vulnerability in swfdump in swftools 0.9.2 al ...)
+ TODO: check
+CVE-2024-27592 (Open Redirect vulnerability in Corezoid Process Engine v6.5.0 allows a ...)
+ TODO: check
+CVE-2024-25376 (An issue discovered in Thesycon Software Solutions Gmbh & Co. KG TUSBA ...)
+ TODO: check
+CVE-2024-22734 (An issue was discovered in AMCS Group Trux Waste Management Software b ...)
+ TODO: check
+CVE-2024-22526 (Buffer Overflow vulnerability in bandisoft bandiview v7.0, allows loca ...)
+ TODO: check
+CVE-2024-22357 (IBM Sterling B2B Integrator 6.0.0.0 through 6.0.3.9, 6.1.0.0 through 6 ...)
+ TODO: check
+CVE-2023-50307 (IBM Sterling B2B Integrator 6.0.0.0 through 6.0.3.9, 6.1.0.0 through 6 ...)
+ TODO: check
+CVE-2023-49528 (Buffer Overflow vulnerability in FFmpeg version n6.1-3-g466799d4f5, al ...)
+ TODO: check
+CVE-2023-48865 (An issue discovered in Reportico Till 8.1.0 allows attackers to obtain ...)
+ TODO: check
+CVE-2023-45186 (IBM Sterling B2B Integrator 6.0.0.0 through 6.0.3.9, 6.1.0.0 through 6 ...)
+ TODO: check
+CVE-2023-44857 (An issue in Cobham SAILOR VSAT Ku v.164B019, allows a remote attacker ...)
+ TODO: check
+CVE-2023-44856 (Cross Site Scripting (XSS) vulnerability in Cobham SAILOR VSAT Ku v.16 ...)
+ TODO: check
+CVE-2023-44855 (Cross Site Scripting (XSS) vulnerability in Cobham SAILOR VSAT Ku v.16 ...)
+ TODO: check
+CVE-2023-44854 (Cross Site Scripting (XSS) vulnerability in Cobham SAILOR VSAT Ku v.16 ...)
+ TODO: check
+CVE-2023-44853 (\An issue was discovered in Cobham SAILOR VSAT Ku v.164B019, allows a ...)
+ TODO: check
+CVE-2023-44852 (Cross Site Scripting (XSS) vulnerability in Cobham SAILOR VSAT Ku v.16 ...)
+ TODO: check
CVE-2024-1874
- php8.2 8.2.18-1
- php7.4 <removed>
@@ -22,7 +66,7 @@ CVE-2024-2757
- php7.3 <removed>
NOTE: Fixed in: 8.2.18
TODO: fill in with GHSA security advisory references and further details
-CVE-2024-27309
+CVE-2024-27309 (While an Apache Kafka cluster is being migrated from ZooKeeper mode to ...)
- kafka <itp> (bug #786460)
CVE-2024-3344 (The Otter Blocks \u2013 Gutenberg Blocks, Page Builder for Gutenberg E ...)
NOT-FOR-US: WordPress plugin
@@ -124,13 +168,13 @@ CVE-2023-32295 (Missing Authorization vulnerability in Alex Tselegidis Easy!Appo
NOT-FOR-US: WordPress plugin
CVE-2023-32228 (A firmware bug which may lead to misinterpretation of data in the AMC2 ...)
NOT-FOR-US: Bosch
-CVE-2024-3092
+CVE-2024-3092 (An issue has been discovered in GitLab CE/EE affecting all versions st ...)
- gitlab <unfixed>
-CVE-2024-2279
+CVE-2024-2279 (An issue has been discovered in GitLab CE/EE affecting all versions st ...)
- gitlab <unfixed>
-CVE-2023-6489
+CVE-2023-6489 (A denial of service vulnerability was identified in GitLab CE/EE, vers ...)
- gitlab <unfixed>
-CVE-2023-6678
+CVE-2023-6678 (An issue has been discovered in GitLab EE affecting all versions befor ...)
- gitlab <unfixed>
CVE-2024-3652 (The Libreswan Project was notified of an issue causing libreswan to re ...)
- libreswan <unfixed>
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/60b95ffd5838d72b879cc3f921af681abde47452
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/60b95ffd5838d72b879cc3f921af681abde47452
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240412/593bab5d/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list