[Git][security-tracker-team/security-tracker][master] bugnums

Moritz Muehlenhoff (@jmm) jmm at debian.org
Fri Aug 2 23:24:21 BST 2024 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
bd190a54 by Moritz Muehlenhoff at 2024-08-03T00:22:59+02:00
bugnums

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -117,16 +117,16 @@ CVE-2024-6567 (The Ebook Store plugin for WordPress is vulnerable to Full Path D
 CVE-2024-5595 (The Essential Blocks  WordPress plugin before 4.7.0 does not validate  ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2024-42461 (In the Elliptic package 6.5.6 for Node.js, ECDSA signature malleabilit ...)
-	- node-elliptic <unfixed>
+	- node-elliptic <unfixed> (bug #1077821)
 	NOTE: https://github.com/indutny/elliptic/pull/317
 CVE-2024-42460 (In the Elliptic package 6.5.6 for Node.js, ECDSA signature malleabilit ...)
-	- node-elliptic <unfixed>
+	- node-elliptic <unfixed> (bug #1077821)
 	NOTE: https://github.com/indutny/elliptic/pull/317
 CVE-2024-42459 (In the Elliptic package 6.5.6 for Node.js, EDDSA signature malleabilit ...)
-	- node-elliptic <unfixed>
+	- node-elliptic <unfixed> (bug #1077821)
 	NOTE: https://github.com/indutny/elliptic/pull/317
 CVE-2024-42458 (server.c in Neat VNC (aka neatvnc) before 0.8.1 does not properly vali ...)
-	- neatvnc <unfixed>
+	- neatvnc <unfixed> (bug #1077822)
 	NOTE: https://github.com/any1/neatvnc/commit/cc71650a69abc2573a0d96d082409d2468802d47
 CVE-2024-41965 (Vim is an open source command line text editor. double-free in dialog_ ...)
 	- vim <unfixed> (unimportant)
@@ -274,7 +274,7 @@ CVE-2024-6923 (There is a MEDIUM severity vulnerability affecting CPython.  The
 	- python2.7 <removed>
 	NOTE: https://github.com/python/cpython/pull/122233
 CVE-2024-6873 (It is possible to crash or redirect the execution flow of the ClickHou ...)
-	- clickhouse <unfixed>
+	- clickhouse <unfixed> (bug #1077820)
 	NOTE: https://github.com/ClickHouse/ClickHouse/security/advisories/GHSA-432f-r822-j66f
 	NOTE: https://github.com/ClickHouse/ClickHouse/pull/64024
 CVE-2024-6346 (The Gutenberg Blocks, Page Builder \u2013 ComboBlocks plugin for WordP ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bd190a549ab7947b71ecb731753b89532b928ece

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bd190a549ab7947b71ecb731753b89532b928ece
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240802/65244c80/attachment.htm>

More information about the debian-security-tracker-commits mailing list