[Git][security-tracker-team/security-tracker][master] CVE-2024-6782 n/a for bullseye
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Thu Aug 8 12:02:44 BST 2024
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a5014e88 by Moritz Muehlenhoff at 2024-08-08T13:02:18+02:00
CVE-2024-6782 n/a for bullseye
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -689,8 +689,10 @@ CVE-2024-6886 (Improper Neutralization of Input During Web Page Generation (XSS
- gitea <removed>
CVE-2024-6782 (Improper access control in Calibre 6.9.0 ~ 7.14.0 allow unauthenticate ...)
- calibre 7.16.0+ds-1
+ [bullseye] - calibre <not-affected> (Vulnerable code not present)
NOTE: https://starlabs.sg/advisories/24/24-6782/
NOTE: https://github.com/kovidgoyal/calibre/commit/38a1bf50d8cd22052ae59c513816706c6445d5e9 (v7.16.0)
+ NOTE: Introduced in https://github.com/kovidgoyal/calibre/commit/1ecb96d76a7ff5269b3a85472cc64fe834407b60 (v6.9.0)
CVE-2024-6781 (Path traversal in Calibre <= 7.14.0 allow unauthenticated attackers to ...)
- calibre 7.16.0+ds-1
NOTE: https://starlabs.sg/advisories/24/24-6781/
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a5014e88f66a4066d9b0f6f62b44835eb25a8008
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a5014e88f66a4066d9b0f6f62b44835eb25a8008
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240808/51e06681/attachment.htm>
More information about the debian-security-tracker-commits
mailing list