[Git][security-tracker-team/security-tracker][master] Add CVE-2024-34088/frr
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Apr 30 22:43:39 BST 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
5171f6a8 by Salvatore Bonaccorso at 2024-04-30T23:43:03+02:00
Add CVE-2024-34088/frr
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -15,7 +15,9 @@ CVE-2024-3411 (Implementations of IPMI Authenticated sessions does not provide e
CVE-2024-3072 (The ACF Front End Editor plugin for WordPress is vulnerable to unautho ...)
NOT-FOR-US: WordPress plugin
CVE-2024-34088 (In FRRouting (FRR) through 9.1, it is possible for the get_edge() func ...)
- TODO: check
+ - frr <unfixed>
+ NOTE: https://github.com/FRRouting/frr/pull/15674
+ NOTE: Proposed fix: https://github.com/FRRouting/frr/commit/34d704fb0ea60dc5063af477a2c11d4884984d4f
CVE-2024-33832 (OneNav v0.9.35-20240318 was discovered to contain a Server-Side Reques ...)
NOT-FOR-US: OneNav
CVE-2024-33831 (A stored cross-site scripting (XSS) vulnerability in the Advanced Expe ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5171f6a8eb1c421b88b4d2ae7e0cb2cd069a942d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5171f6a8eb1c421b88b4d2ae7e0cb2cd069a942d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240430/c8d99c62/attachment.htm>
More information about the debian-security-tracker-commits
mailing list