[Git][security-tracker-team/security-tracker][master] new djoser issue

Moritz Muehlenhoff (@jmm) jmm at debian.org
Fri Dec 13 14:13:55 GMT 2024



Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4e5fcac2 by Moritz Muehlenhoff at 2024-12-13T15:13:30+01:00
new djoser issue

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -6,7 +6,10 @@ CVE-2024-55918 (An issue was discovered in the Graphics::ColorNames package befo
 CVE-2024-21544 (Versions of the package spatie/browsershot before 5.0.1 are vulnerable ...)
 	NOT-FOR-US: spatie/browsershot
 CVE-2024-21543 (Versions of the package djoser before 2.3.0 are vulnerable to Authenti ...)
-	TODO: check
+	- djoser <unfixed>
+	NOTE: https://github.com/sunscrapers/djoser/issues/795
+	NOTE: https://github.com/sunscrapers/djoser/pull/819
+	NOTE: https://github.com/sunscrapers/djoser/commit/d33c3993c0c735f23cbedc60fa59fce69354f19d (2.3.0)
 CVE-2024-12603 (A logic vulnerability in the the mobile application (com.transsion.app ...)
 	NOT-FOR-US: com.transsion.applock
 CVE-2024-12581 (The Gutenberg Blocks with AI by Kadence WP \u2013 Page Builder Feature ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4e5fcac234e1758978a8cd64eba94f96cd3695ca

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4e5fcac234e1758978a8cd64eba94f96cd3695ca
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241213/09d07fdc/attachment.htm>


More information about the debian-security-tracker-commits mailing list