[Git][security-tracker-team/security-tracker][master] bookworm/bullseye triage

Moritz Muehlenhoff (@jmm) jmm at debian.org
Mon Apr 22 20:06:32 BST 2024 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ef30adf5 by Moritz Muehlenhoff at 2024-04-22T18:51:58+02:00
bookworm/bullseye triage

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2505,6 +2505,8 @@ CVE-2024-3774 (aEnrich Technology a+HRD's functionality for front-end retrieval
 	NOT-FOR-US: aEnrich Technology
 CVE-2024-3772 (Regular expression denial of service in Pydanic < 2.4.0, < 1.10.13 all ...)
 	- pydantic 1.10.13-0.1
+	[bookworm] - pydantic <no-dsa> (Minor issue)
+	[bullseye] - pydantic <no-dsa> (Minor issue)
 	NOTE: https://github.com/pydantic/pydantic/pull/7360
 	NOTE: https://github.com/pydantic/pydantic/commit/e4393ae6145c4dadff739990bb0116c6dec3441b (v2.4.0)
 	NOTE: https://github.com/pydantic/pydantic/pull/7673
@@ -5188,6 +5190,8 @@ CVE-2024-23592 (An authentication bypass vulnerability was reported in Lenovo de
 	NOT-FOR-US: Lenovo
 CVE-2024-21506 (Versions of the package pymongo before 4.6.3 are vulnerable to Out-of- ...)
 	- pymongo <unfixed> (bug #1069581)
+	[bookworm] - pymongo <no-dsa> (Minor issue)
+	[bullseye] - pymongo <no-dsa> (Minor issue)
 	NOTE: https://security.snyk.io/vuln/SNYK-PYTHON-PYMONGO-6370597
 	NOTE: https://gist.github.com/keltecc/62a7c2bf74a997d0a7b48a0ff3853a03
 CVE-2024-1994 (The Image Watermark plugin for WordPress is vulnerable to unauthorized ...)
@@ -7853,6 +7857,8 @@ CVE-2024-3039 (A vulnerability classified as critical has been found in Shanghai
 	NOT-FOR-US: Shanghai Brad Technology BladeX
 CVE-2024-3019 (A flaw was found in PCP. The default pmproxy configuration exposes the ...)
 	- pcp <unfixed> (bug #1068112)
+	[bookworm] - pcp <no-dsa> (Minor issue)
+	[bullseye] - pcp <no-dsa> (Minor issue)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2271898
 	NOTE: Fixed by: https://github.com/performancecopilot/pcp/commit/3bde240a2acc85e63e2f7813330713dd9b59386e
 CVE-2024-31140 (In JetBrains TeamCity before 2024.03 server administrators could remov ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ef30adf52af159a2b0d2c8e751b0fcbd67983904

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ef30adf52af159a2b0d2c8e751b0fcbd67983904
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240422/d8a374a0/attachment.htm>

More information about the debian-security-tracker-commits mailing list