[Git][security-tracker-team/security-tracker][master] bugnums

Moritz Muehlenhoff (@jmm) jmm at debian.org
Wed Apr 24 14:06:58 BST 2024 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ac1e8043 by Moritz Muehlenhoff at 2024-04-24T15:06:19+02:00
bugnums

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -68,7 +68,7 @@ CVE-2024-32258 (The network server of fceux 2.7.0 has a path traversal vulnerabi
 CVE-2024-31804 (An unquoted service path vulnerability in Terratec DMX_6Fire USB v.1.2 ...)
 	NOT-FOR-US: Terratec
 CVE-2024-31208 (Synapse is an open-source Matrix homeserver. A remote Matrix user with ...)
-	- matrix-synapse <unfixed>
+	- matrix-synapse <unfixed> (bug #1069763)
 	NOTE: https://github.com/element-hq/synapse/security/advisories/GHSA-3h7q-rfh9-xm4v
 	NOTE: https://github.com/element-hq/synapse/commit/55b0aa847a61774b6a3acdc4b177a20dc019f01a (v1.105.1)
 CVE-2024-30800 (PX4 Autopilot v.1.14 allows an attacker to fly the drone into no-fly z ...)
@@ -550,7 +550,7 @@ CVE-2024-21872 (The device allows an unauthenticated attacker to bypass authenti
 CVE-2024-21846 (An unauthenticated attacker can reset the board and stop transmitter   ...)
 	NOT-FOR-US: Electrolink
 CVE-2024-1681 (corydolphin/flask-cors is vulnerable to log injection when the log lev ...)
-	- python-flask-cors <unfixed>
+	- python-flask-cors <unfixed> (bug #1069764)
 	NOTE: https://huntr.com/bounties/25a7a0ba-9fa2-4777-acb6-03e5539bb644
 	NOTE: https://github.com/corydolphin/flask-cors/issues/349
 CVE-2024-1491 (The devices allow access to an unprotected endpoint that allows MPFS   ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ac1e8043aa4c5c51116bfda1be3737947b1b550c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ac1e8043aa4c5c51116bfda1be3737947b1b550c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240424/9c3d07ac/attachment.htm>

More information about the debian-security-tracker-commits mailing list