[Git][security-tracker-team/security-tracker][master] mosquitto commit references

Moritz Muehlenhoff (@jmm) jmm at debian.org
Sun Dec 1 20:16:23 GMT 2024



Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
45e1dba6 by Moritz Muehlenhoff at 2024-12-01T21:16:10+01:00
mosquitto commit references

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -9238,6 +9238,7 @@ CVE-2024-3935 (In Eclipse Mosquito, versions from 2.0.0 through 2.0.18, if a Mos
 	- mosquitto 2.0.20-1
 	NOTE: https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/197
 	NOTE: https://mosquitto.org/blog/2024/10/version-2-0-19-released/
+	NOTE: https://github.com/eclipse-mosquitto/mosquitto/commit/ae7a804dadac8f2aaedb24336df8496a9680fda9 (v2.0.19)
 CVE-2024-37573 (The Talkatone com.talkatone.android application 8.4.6 for Android enab ...)
 	NOT-FOR-US: Talkatone com.talkatone.android application
 CVE-2024-36060 (EnGenius EnStation5-AC A8J-ENS500AC 1.0.0 devices allow blind OS comma ...)
@@ -9278,6 +9279,7 @@ CVE-2024-10525 (In Eclipse Mosquitto, from version 1.3.2 through 2.0.18, if a ma
 	- mosquitto 2.0.20-1
 	NOTE: https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/190
 	NOTE: https://mosquitto.org/blog/2024/10/version-2-0-19-released/
+	NOTE: https://github.com/eclipse-mosquitto/mosquitto/commit/8ab20b4ba4204fdcdec78cb4d9f03c944a6e0e1c (v2.0.19)
 CVE-2024-10456 (Delta Electronics InfraSuite Device Master versions prior to 1.0.12 ar ...)
 	NOT-FOR-US: Delta Electronics
 CVE-2024-10573 (An out-of-bounds write flaw was found in mpg123 when handling crafted  ...)
@@ -15058,6 +15060,7 @@ CVE-2024-8376 (In Eclipse Mosquitto up to version 2.0.18a, an attacker can achie
 	NOTE: https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/217
 	NOTE: https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/216
 	NOTE: https://gitlab.eclipse.org/security/cve-assignement/-/issues/26
+	NOTE: https://github.com/eclipse-mosquitto/mosquitto/commit/1914b3ee2a18102d0a94cbdbbfeae1afa03edd17 (v2.0.19)
 CVE-2024-7514 (The WordPress Comments Import & Export plugin for WordPress is vulnera ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2024-6985 (A path traversal vulnerability exists in the api open_personality_fold ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/45e1dba69db75e8c9f8bd270dcb39e0973e876d0

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/45e1dba69db75e8c9f8bd270dcb39e0973e876d0
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241201/89f5d0f2/attachment-0001.htm>


More information about the debian-security-tracker-commits mailing list