[Git][security-tracker-team/security-tracker][master] Add new zoneminder issues

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
67c9f7d1 by Salvatore Bonaccorso at 2024-08-13T21:13:01+02:00
Add new zoneminder issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -25,11 +25,22 @@ CVE-2024-6823 (The Media Library Assistant plugin for WordPress is vulnerable to
 CVE-2024-6724 (The Generate Images  WordPress plugin before 5.2.8 does not sanitise a ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2024-43360 (ZoneMinder is a free, open source closed-circuit television software a ...)
-	TODO: check
+	- zoneminder <unfixed>
+	NOTE: https://github.com/ZoneMinder/zoneminder/security/advisories/GHSA-9cmr-7437-v9fj
+	NOTE: https://github.com/ZoneMinder/zoneminder/commit/677f6a31551f128554f7b0110a52fd76453a657a (1.36.34)
+	NOTE: https://github.com/ZoneMinder/zoneminder/commit/bb07118118e23b5670c2c18be8be2cc6b8529397 (1.36.34)
+	NOTE: https://github.com/ZoneMinder/zoneminder/commit/a194fe81d34c5eea2ab1dc18dc8df615fca634a6 (1.37.61)
+	NOTE: https://github.com/ZoneMinder/zoneminder/commit/de8f387207e9c506e8e8007eda725741a25601c5 (1.37.61)
 CVE-2024-43359 (ZoneMinder is a free, open source closed-circuit television software a ...)
-	TODO: check
+	- zoneminder <unfixed>
+	NOTE: https://github.com/ZoneMinder/zoneminder/security/advisories/GHSA-pjjm-3qxp-6hj8
+	NOTE: https://github.com/ZoneMinder/zoneminder/commit/6cc64dddff6144a98680f65ecf8dc249028431af (1.36.34)
+	NOTE: https://github.com/ZoneMinder/zoneminder/commit/b51c5df0cb869ca48fccfc6e6fd7c19bf717ecd2 (1.37.61)
 CVE-2024-43358 (ZoneMinder is a free, open source closed-circuit television software a ...)
-	TODO: check
+	- zoneminder <unfixed>
+	NOTE: https://github.com/ZoneMinder/zoneminder/security/advisories/GHSA-6rrw-66rf-6g5f
+	NOTE: https://github.com/ZoneMinder/zoneminder/commit/062cf568a33fb6a8604ec327b1de8bb2e0d1ff77 (1.36.34)
+	NOTE: https://github.com/ZoneMinder/zoneminder/commit/4602cd0470a3b90b18bcc44b3c86d963872d1ba0 (1.37.61)
 CVE-2024-43233 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2024-43231 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/67c9f7d13a294c33a7bc5e4fd074515a82810bc4

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/67c9f7d13a294c33a7bc5e4fd074515a82810bc4
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240813/1a295f6e/attachment.htm>