[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Apr 20 21:11:55 BST 2024



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b0a25f8d by security tracker role at 2024-04-20T20:11:41+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,7 @@
+CVE-2024-4019 (A vulnerability classified as critical has been found in Byzoro Smart  ...)
+	TODO: check
+CVE-2024-4014 (The hCaptcha for WordPress plugin for WordPress is vulnerable to Store ...)
+	TODO: check
 CVE-2024-4018 (Improper Privilege Management vulnerability in BeyondTrust U-Series Ap ...)
 	TODO: check
 CVE-2024-4017 (Improper Privilege Management vulnerability in BeyondTrust U-Series Ap ...)
@@ -1798,54 +1802,67 @@ CVE-2024-XXXX [gix-transport indirect code execution via malicious username]
 CVE-2024-27980
 	- nodejs <not-affected> (Only affects Windows)
 CVE-2024-3847 (Insufficient policy enforcement in WebUI in Google Chrome prior to 124 ...)
+	{DSA-5668-1}
 	- chromium <unfixed>
 	[bullseye] - chromium <end-of-life> (see #1061268)
 	[buster] - chromium <end-of-life> (see DSA 5046)
 CVE-2024-3846 (Inappropriate implementation in Prompts in Google Chrome prior to 124. ...)
+	{DSA-5668-1}
 	- chromium <unfixed>
 	[bullseye] - chromium <end-of-life> (see #1061268)
 	[buster] - chromium <end-of-life> (see DSA 5046)
 CVE-2024-3845 (Inappropriate implementation in Networks in Google Chrome prior to 124 ...)
+	{DSA-5668-1}
 	- chromium <unfixed>
 	[bullseye] - chromium <end-of-life> (see #1061268)
 	[buster] - chromium <end-of-life> (see DSA 5046)
 CVE-2024-3844 (Inappropriate implementation in Extensions in Google Chrome prior to 1 ...)
+	{DSA-5668-1}
 	- chromium <unfixed>
 	[bullseye] - chromium <end-of-life> (see #1061268)
 	[buster] - chromium <end-of-life> (see DSA 5046)
 CVE-2024-3843 (Insufficient data validation in Downloads in Google Chrome prior to 12 ...)
+	{DSA-5668-1}
 	- chromium <unfixed>
 	[bullseye] - chromium <end-of-life> (see #1061268)
 	[buster] - chromium <end-of-life> (see DSA 5046)
 CVE-2024-3841 (Insufficient data validation in Browser Switcher in Google Chrome prio ...)
+	{DSA-5668-1}
 	- chromium <unfixed>
 	[bullseye] - chromium <end-of-life> (see #1061268)
 	[buster] - chromium <end-of-life> (see DSA 5046)
 CVE-2024-3840 (Insufficient policy enforcement in Site Isolation in Google Chrome pri ...)
+	{DSA-5668-1}
 	- chromium <unfixed>
 	[bullseye] - chromium <end-of-life> (see #1061268)
 	[buster] - chromium <end-of-life> (see DSA 5046)
 CVE-2024-3839 (Out of bounds read in Fonts in Google Chrome prior to 124.0.6367.60 al ...)
+	{DSA-5668-1}
 	- chromium <unfixed>
 	[bullseye] - chromium <end-of-life> (see #1061268)
 	[buster] - chromium <end-of-life> (see DSA 5046)
 CVE-2024-3838 (Inappropriate implementation in Autofill in Google Chrome prior to 124 ...)
+	{DSA-5668-1}
 	- chromium <unfixed>
 	[bullseye] - chromium <end-of-life> (see #1061268)
 	[buster] - chromium <end-of-life> (see DSA 5046)
 CVE-2024-3837 (Use after free in QUIC in Google Chrome prior to 124.0.6367.60 allowed ...)
+	{DSA-5668-1}
 	- chromium <unfixed>
 	[bullseye] - chromium <end-of-life> (see #1061268)
 	[buster] - chromium <end-of-life> (see DSA 5046)
 CVE-2024-3834 (Use after free in Downloads in Google Chrome prior to 124.0.6367.60 al ...)
+	{DSA-5668-1}
 	- chromium <unfixed>
 	[bullseye] - chromium <end-of-life> (see #1061268)
 	[buster] - chromium <end-of-life> (see DSA 5046)
 CVE-2024-3833 (Object corruption in WebAssembly in Google Chrome prior to 124.0.6367. ...)
+	{DSA-5668-1}
 	- chromium <unfixed>
 	[bullseye] - chromium <end-of-life> (see #1061268)
 	[buster] - chromium <end-of-life> (see DSA 5046)
 CVE-2024-3832 (Object corruption in V8 in Google Chrome prior to 124.0.6367.60 allowe ...)
+	{DSA-5668-1}
 	- chromium <unfixed>
 	[bullseye] - chromium <end-of-life> (see #1061268)
 	[buster] - chromium <end-of-life> (see DSA 5046)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b0a25f8d74221a3afd72d356c5f0b5d9534200b9

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b0a25f8d74221a3afd72d356c5f0b5d9534200b9
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240420/f217626e/attachment.htm>


More information about the debian-security-tracker-commits mailing list