[Git][security-tracker-team/security-tracker][master] new djoser issue
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Fri Dec 13 14:13:55 GMT 2024
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
4e5fcac2 by Moritz Muehlenhoff at 2024-12-13T15:13:30+01:00
new djoser issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -6,7 +6,10 @@ CVE-2024-55918 (An issue was discovered in the Graphics::ColorNames package befo
CVE-2024-21544 (Versions of the package spatie/browsershot before 5.0.1 are vulnerable ...)
NOT-FOR-US: spatie/browsershot
CVE-2024-21543 (Versions of the package djoser before 2.3.0 are vulnerable to Authenti ...)
- TODO: check
+ - djoser <unfixed>
+ NOTE: https://github.com/sunscrapers/djoser/issues/795
+ NOTE: https://github.com/sunscrapers/djoser/pull/819
+ NOTE: https://github.com/sunscrapers/djoser/commit/d33c3993c0c735f23cbedc60fa59fce69354f19d (2.3.0)
CVE-2024-12603 (A logic vulnerability in the the mobile application (com.transsion.app ...)
NOT-FOR-US: com.transsion.applock
CVE-2024-12581 (The Gutenberg Blocks with AI by Kadence WP \u2013 Page Builder Feature ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4e5fcac234e1758978a8cd64eba94f96cd3695ca
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4e5fcac234e1758978a8cd64eba94f96cd3695ca
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241213/09d07fdc/attachment.htm>
More information about the debian-security-tracker-commits
mailing list