[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Apr 12 09:12:04 BST 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
60b95ffd by security tracker role at 2024-04-12T08:11:50+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,47 @@
+CVE-2024-3400 (A command injection vulnerability in the GlobalProtect feature of Palo ...)
+	TODO: check
+CVE-2024-30850 (An issue in tiagorlampert CHAOS v5.0.1 allows a remote attacker to exe ...)
+	TODO: check
+CVE-2024-30614 (An issue in Ametys CMS v4.5.0 and before allows attackers to obtain se ...)
+	TODO: check
+CVE-2024-2801 (The Shopkeeper Extender plugin for WordPress is vulnerable to Stored C ...)
+	TODO: check
+CVE-2024-2137 (The All-in-One Addons for Elementor \u2013 WidgetKit plugin for WordPr ...)
+	TODO: check
+CVE-2024-29400 (An issue was discovered in RuoYi v4.5.1, allows attackers to obtain se ...)
+	TODO: check
+CVE-2024-28458 (Null Pointer Dereference vulnerability in swfdump in swftools 0.9.2 al ...)
+	TODO: check
+CVE-2024-27592 (Open Redirect vulnerability in Corezoid Process Engine v6.5.0 allows a ...)
+	TODO: check
+CVE-2024-25376 (An issue discovered in Thesycon Software Solutions Gmbh & Co. KG TUSBA ...)
+	TODO: check
+CVE-2024-22734 (An issue was discovered in AMCS Group Trux Waste Management Software b ...)
+	TODO: check
+CVE-2024-22526 (Buffer Overflow vulnerability in bandisoft bandiview v7.0, allows loca ...)
+	TODO: check
+CVE-2024-22357 (IBM Sterling B2B Integrator 6.0.0.0 through 6.0.3.9, 6.1.0.0 through 6 ...)
+	TODO: check
+CVE-2023-50307 (IBM Sterling B2B Integrator 6.0.0.0 through 6.0.3.9, 6.1.0.0 through 6 ...)
+	TODO: check
+CVE-2023-49528 (Buffer Overflow vulnerability in FFmpeg version n6.1-3-g466799d4f5, al ...)
+	TODO: check
+CVE-2023-48865 (An issue discovered in Reportico Till 8.1.0 allows attackers to obtain ...)
+	TODO: check
+CVE-2023-45186 (IBM Sterling B2B Integrator 6.0.0.0 through 6.0.3.9, 6.1.0.0 through 6 ...)
+	TODO: check
+CVE-2023-44857 (An issue in Cobham SAILOR VSAT Ku v.164B019, allows a remote attacker  ...)
+	TODO: check
+CVE-2023-44856 (Cross Site Scripting (XSS) vulnerability in Cobham SAILOR VSAT Ku v.16 ...)
+	TODO: check
+CVE-2023-44855 (Cross Site Scripting (XSS) vulnerability in Cobham SAILOR VSAT Ku v.16 ...)
+	TODO: check
+CVE-2023-44854 (Cross Site Scripting (XSS) vulnerability in Cobham SAILOR VSAT Ku v.16 ...)
+	TODO: check
+CVE-2023-44853 (\An issue was discovered in Cobham SAILOR VSAT Ku v.164B019, allows a  ...)
+	TODO: check
+CVE-2023-44852 (Cross Site Scripting (XSS) vulnerability in Cobham SAILOR VSAT Ku v.16 ...)
+	TODO: check
 CVE-2024-1874
 	- php8.2 8.2.18-1
 	- php7.4 <removed>
@@ -22,7 +66,7 @@ CVE-2024-2757
 	- php7.3 <removed>
 	NOTE: Fixed in: 8.2.18
 	TODO: fill in with GHSA security advisory references and further details
-CVE-2024-27309
+CVE-2024-27309 (While an Apache Kafka cluster is being migrated from ZooKeeper mode to ...)
 	- kafka <itp> (bug #786460)
 CVE-2024-3344 (The Otter Blocks \u2013 Gutenberg Blocks, Page Builder for Gutenberg E ...)
 	NOT-FOR-US: WordPress plugin
@@ -124,13 +168,13 @@ CVE-2023-32295 (Missing Authorization vulnerability in Alex Tselegidis Easy!Appo
 	NOT-FOR-US: WordPress plugin
 CVE-2023-32228 (A firmware bug which may lead to misinterpretation of data in the AMC2 ...)
 	NOT-FOR-US: Bosch
-CVE-2024-3092
+CVE-2024-3092 (An issue has been discovered in GitLab CE/EE affecting all versions st ...)
 	- gitlab <unfixed>
-CVE-2024-2279
+CVE-2024-2279 (An issue has been discovered in GitLab CE/EE affecting all versions st ...)
 	- gitlab <unfixed>
-CVE-2023-6489
+CVE-2023-6489 (A denial of service vulnerability was identified in GitLab CE/EE, vers ...)
 	- gitlab <unfixed>
-CVE-2023-6678
+CVE-2023-6678 (An issue has been discovered in GitLab EE affecting all versions befor ...)
 	- gitlab <unfixed>
 CVE-2024-3652 (The Libreswan Project was notified of an issue causing libreswan to re ...)
 	- libreswan <unfixed>



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/60b95ffd5838d72b879cc3f921af681abde47452

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/60b95ffd5838d72b879cc3f921af681abde47452
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240412/593bab5d/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list