[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Aug 5 21:12:51 BST 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
76bcfa9b by security tracker role at 2024-08-05T20:12:33+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,20 +1,131 @@
-CVE-2024-7383 [NBD server improper certificate validation]
+CVE-2024-7397 (Improper filering of special characters result in a command ('command ...)
+ TODO: check
+CVE-2024-7396 (Missing encryption of sensitive data in Korenix JetPort 5601v3 allows ...)
+ TODO: check
+CVE-2024-7395 (An authentication bypass vulnerability in Korenix JetPort 5601v3 allow ...)
+ TODO: check
+CVE-2024-6915 (JFrog Artifactory versions below 7.90.6, 7.84.20, 7.77.14, 7.71.23, 7. ...)
+ TODO: check
+CVE-2024-6865
+ REJECTED
+CVE-2024-6361 (Improper Neutralization vulnerability (XSS) has been discovered in Ope ...)
+ TODO: check
+CVE-2024-4607 (Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm ...)
+ TODO: check
+CVE-2024-42350 (Biscuit is an authorization token with decentralized verification, off ...)
+ TODO: check
+CVE-2024-41960 (mailcow: dockerized is an open source groupware/email suite based on d ...)
+ TODO: check
+CVE-2024-41959 (mailcow: dockerized is an open source groupware/email suite based on d ...)
+ TODO: check
+CVE-2024-41958 (mailcow: dockerized is an open source groupware/email suite based on d ...)
+ TODO: check
+CVE-2024-41381 (microweber 2.0.16 was discovered to contain a Cross Site Scripting (XS ...)
+ TODO: check
+CVE-2024-41380 (microweber 2.0.16 was discovered to contain a Cross Site Scripting (XS ...)
+ TODO: check
+CVE-2024-41376 (dzzoffice 2.02.1 is vulnerable to Directory Traversal via user/space/a ...)
+ TODO: check
+CVE-2024-41200 (A segmentation fault in KMPlayer v4.2.2.65 allows attackers to cause a ...)
+ TODO: check
+CVE-2024-40531 (An issue in UAB Lexita PanteraCRM CMS v.401.152 and Patera CRM CMS v.4 ...)
+ TODO: check
+CVE-2024-40530 (Insecure Permissions vulnerability in UAB Lexita PanteraCRM CMS v.401. ...)
+ TODO: check
+CVE-2024-40498 (SQL Injection vulnerability in PuneethReddyHC Online Shopping sysstem ...)
+ TODO: check
+CVE-2024-40096 (The com.cascadialabs.who (aka Who - Caller ID, Spam Block) application ...)
+ TODO: check
+CVE-2024-33034 (Memory corruption can occur if VBOs hold outdated or invalid GPU SMMU ...)
+ TODO: check
+CVE-2024-33028 (Memory corruption as fence object may still be accessed in timeline de ...)
+ TODO: check
+CVE-2024-33027 (Memory corruption can occur when arbitrary user-space app gains kernel ...)
+ TODO: check
+CVE-2024-33026 (Transient DOS while parsing probe response and assoc response frame wh ...)
+ TODO: check
+CVE-2024-33025 (Transient DOS while parsing the BSS parameter change count or MLD capa ...)
+ TODO: check
+CVE-2024-33024 (Transient DOS while parsing the ML IE when a beacon with length field ...)
+ TODO: check
+CVE-2024-33023 (Memory corruption while creating a fence to wait on timeline events, a ...)
+ TODO: check
+CVE-2024-33022 (Memory corruption while allocating memory in HGSL driver.)
+ TODO: check
+CVE-2024-33021 (Memory corruption while processing IOCTL call to set metainfo.)
+ TODO: check
+CVE-2024-33020 (Transient DOS while processing TID-to-link mapping IE elements.)
+ TODO: check
+CVE-2024-33019 (Transient DOS while parsing the received TID-to-link mapping action fr ...)
+ TODO: check
+CVE-2024-33018 (Transient DOS while parsing the received TID-to-link mapping element o ...)
+ TODO: check
+CVE-2024-33015 (Transient DOS while parsing SCAN RNR IE when bytes received from AP is ...)
+ TODO: check
+CVE-2024-33014 (Transient DOS while parsing ESP IE from beacon/probe response frame.)
+ TODO: check
+CVE-2024-33013 (Transient DOS when driver accesses the ML IE memory and offset value i ...)
+ TODO: check
+CVE-2024-33012 (Transient DOS while parsing the multiple MBSSID IEs from the beacon, w ...)
+ TODO: check
+CVE-2024-33011 (Transient DOS while parsing the MBSSID IE from the beacons, when the M ...)
+ TODO: check
+CVE-2024-33010 (Transient DOS while parsing fragments of MBSSID IE from beacon frame.)
+ TODO: check
+CVE-2024-2937 (Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm ...)
+ TODO: check
+CVE-2024-23384 (Memory corruption when the mapped pages in VBO are still mapped after ...)
+ TODO: check
+CVE-2024-23383 (Memory corruption when kernel driver attempts to trigger hardware fenc ...)
+ TODO: check
+CVE-2024-23382 (Memory corruption while processing graphics kernel driver request to c ...)
+ TODO: check
+CVE-2024-23381 (Memory corruption when memory mapped in a VBO is not unmapped by the G ...)
+ TODO: check
+CVE-2024-23357 (Transient DOS while importing a PKCS#8-encoded RSA key with zero bytes ...)
+ TODO: check
+CVE-2024-23356 (Memory corruption during session sign renewal request calls in HLOS.)
+ TODO: check
+CVE-2024-23355 (Memory corruption when keymaster operation imports a shared key.)
+ TODO: check
+CVE-2024-23353 (Transient DOS while decoding attach reject message received by UE, whe ...)
+ TODO: check
+CVE-2024-23352 (Transient DOS when NAS receives ODAC criteria of length 1 and type 1 i ...)
+ TODO: check
+CVE-2024-23350 (Permanent DOS when DL NAS transport receives multiple payloads such th ...)
+ TODO: check
+CVE-2024-21980 (Improper restriction of write operations in SNP firmware could allow a ...)
+ TODO: check
+CVE-2024-21978 (Improper input validation in SEV-SNP could allow a malicious hyperviso ...)
+ TODO: check
+CVE-2024-21481 (Memory corruption when preparing a shared memory notification for a me ...)
+ TODO: check
+CVE-2024-21479 (Transient DOS during music playback of ALAC content.)
+ TODO: check
+CVE-2024-21467 (Information disclosure while handling beacon probe frame during scan e ...)
+ TODO: check
+CVE-2024-21459 (Information disclosure while handling beacon or probe response frame i ...)
+ TODO: check
+CVE-2023-31355 (Improper restriction of write operations in SNP firmware could allow a ...)
+ TODO: check
+CVE-2024-7383 (A flaw was found in libnbd. The client did not always correctly verify ...)
- libnbd <unfixed>
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2302865
NOTE: https://lists.libguestfs.org/archives/list/guestfs%40lists.libguestfs.org/message/LHR3BW6RJ7K4BJBQIYV3GTZLSY27VZO2/
TODO: queried Red Hat about scope of the CVE in relation to issues reported in mailinglist post
-CVE-2024-36448
+CVE-2024-36448 (** UNSUPPORTED WHEN ASSIGNED ** Server-Side Request Forgery (SSRF) vul ...)
NOT-FOR-US: Apache IoTDB
-CVE-2024-6472
+CVE-2024-6472 (Certificate Validation user interface in LibreOffice allows potential ...)
+ {DSA-5737-1}
- libreoffice 4:24.2.5-1
NOTE: https://www.libreoffice.org/about-us/security/advisories/cve-2024-6472/
-CVE-2024-42010 [information leak (access to remote content) via insufficient CSS filtering]
+CVE-2024-42010 (mod_css_styles in Roundcube through 1.5.7 and 1.6.x through 1.6.7 allo ...)
- roundcube 1.6.8+dfsg-1 (bug #1077969)
NOTE: https://github.com/roundcube/roundcubemail/commit/602d0f566eb39b6dcb739ad78323ec434a3b92ce
-CVE-2024-42009 [XSS vulnerability in post-processing of sanitized HTML content]
+CVE-2024-42009 (A Cross-Site Scripting vulnerability in Roundcube through 1.5.7 and 1. ...)
- roundcube 1.6.8+dfsg-1 (bug #1077969)
NOTE: https://github.com/roundcube/roundcubemail/commit/68af7c864a36e1941764238dac440ab0d99a8d26
-CVE-2024-42008 [XSS vulnerability in serving of attachments other than HTML or SVG]
+CVE-2024-42008 (A Cross-Site Scripting vulnerability in rcmail_action_mail_get->run() ...)
- roundcube 1.6.8+dfsg-1 (bug #1077969)
NOTE: https://github.com/roundcube/roundcubemail/commit/89c8fe9ae9318c015807fbcbf7e39555fb30885d
CVE-2024-7470 (A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200 and M ...)
@@ -67,7 +178,7 @@ CVE-2024-39713 (A Server-Side Request Forgery (SSRF) affects Rocket.Chat's Twili
NOT-FOR-US: Rocket.Chat
CVE-2024-2232 (The lacks CSRF checks allowing a user to invite any user to any group ...)
NOT-FOR-US: WordPress plugin
-CVE-2024-38856
+CVE-2024-38856 (Incorrect Authorization vulnerability in Apache OFBiz. This issue aff ...)
NOT-FOR-US: Apache OFBiz
CVE-2024-42447 (Insufficient Session Expiration vulnerability in Apache Airflow Provid ...)
- airflow <itp> (bug #819700)
@@ -91,7 +202,7 @@ CVE-2024-7446 (A vulnerability, which was classified as critical, was found in i
NOT-FOR-US: itsourcecode Placement Management System
CVE-2024-6331 (stitionai/devika main branch as of commit cdfb782b0e634b773b10963c8034 ...)
NOT-FOR-US: stitionai/devika
-CVE-2024-7409
+CVE-2024-7409 (A flaw was found in the QEMU NBD Server. This vulnerability allows a d ...)
- qemu <unfixed>
[bookworm] - qemu <no-dsa> (Minor issue)
[bullseye] - qemu <no-dsa> (Minor issue)
@@ -2227,7 +2338,7 @@ CVE-2024-1804 (The Tutor LMS \u2013 Migration Tool plugin for WordPress is vulne
NOT-FOR-US: WordPress plugin
CVE-2024-1798 (The Tutor LMS \u2013 Migration Tool plugin for WordPress is vulnerable ...)
NOT-FOR-US: WordPress plugin
-CVE-2024-7128 (A flaw was found in the Openshift console. Several endpoints in the ap ...)
+CVE-2024-7128 (A flaw was found in the OpenShift console. Several endpoints in the ap ...)
NOT-FOR-US: Openshift
CVE-2024-7062 (Nimble Commander suffers from a privilege escalation vulnerability due ...)
NOT-FOR-US: Nimble Commander
@@ -3913,6 +4024,7 @@ CVE-2024-21149 (Vulnerability in the Oracle Enterprise Asset Management product
CVE-2024-21148 (Vulnerability in the Oracle Applications Framework product of Oracle E ...)
NOT-FOR-US: Oracle
CVE-2024-21147 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle Gr ...)
+ {DSA-5736-1}
- openjdk-8 8u422-b05-1
- openjdk-11 11.0.24+8-1
- openjdk-17 17.0.12+7-1
@@ -3920,11 +4032,13 @@ CVE-2024-21147 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Ora
CVE-2024-21146 (Vulnerability in the Oracle Trade Management product of Oracle E-Busin ...)
NOT-FOR-US: Oracle
CVE-2024-21145 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle Gr ...)
+ {DSA-5736-1}
- openjdk-8 8u422-b05-1
- openjdk-11 11.0.24+8-1
- openjdk-17 17.0.12+7-1
- openjdk-21 21.0.3+9-1
CVE-2024-21144 (Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition ...)
+ {DSA-5736-1}
- openjdk-8 8u422-b05-1
- openjdk-11 11.0.24+8-1
CVE-2024-21143 (Vulnerability in the Oracle iStore product of Oracle E-Business Suite ...)
@@ -3934,6 +4048,7 @@ CVE-2024-21142 (Vulnerability in the MySQL Server product of Oracle MySQL (compo
CVE-2024-21141 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza ...)
- virtualbox 7.0.20-dfsg-1
CVE-2024-21140 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle Gr ...)
+ {DSA-5736-1}
- openjdk-8 8u422-b05-1
- openjdk-11 11.0.24+8-1
- openjdk-17 17.0.12+7-1
@@ -3941,6 +4056,7 @@ CVE-2024-21140 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Ora
CVE-2024-21139 (Vulnerability in the Oracle Business Intelligence Enterprise Edition p ...)
NOT-FOR-US: Oracle
CVE-2024-21138 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle Gr ...)
+ {DSA-5736-1}
- openjdk-8 8u422-b05-1
- openjdk-11 11.0.24+8-1
- openjdk-17 17.0.12+7-1
@@ -3958,6 +4074,7 @@ CVE-2024-21133 (Vulnerability in the Oracle Reports Developer product of Oracle
CVE-2024-21132 (Vulnerability in the Oracle Purchasing product of Oracle E-Business Su ...)
NOT-FOR-US: Oracle
CVE-2024-21131 (Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle Gr ...)
+ {DSA-5736-1}
- openjdk-8 8u422-b05-1
- openjdk-11 11.0.24+8-1
- openjdk-17 17.0.12+7-1
@@ -10247,7 +10364,7 @@ CVE-2024-6182 (A vulnerability was found in LabVantage LIMS 2017. It has been ra
NOT-FOR-US: LabVantage LIMS
CVE-2024-6181 (A vulnerability was found in LabVantage LIMS 2017. It has been declare ...)
NOT-FOR-US: LabVantage LIMS
-CVE-2024-6162 (A vulnerability was found in Undertow. URL-encoded request path inform ...)
+CVE-2024-6162 (A vulnerability was found in Undertow, where URL-encoded request paths ...)
- undertow <unfixed> (bug #1077546)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2293069
CVE-2024-5886
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/76bcfa9b8ba9e0abe89062def384aafb0a21f127
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/76bcfa9b8ba9e0abe89062def384aafb0a21f127
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240805/38573254/attachment.htm>
More information about the debian-security-tracker-commits
mailing list