[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sun Dec 29 20:12:16 GMT 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a2c426e0 by security tracker role at 2024-12-29T20:12:08+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,148 +1,174 @@
-CVE-2024-56756 [nvme-pci: fix freeing of the HMB descriptor table]
+CVE-2024-13022 (A vulnerability, which was classified as critical, was found in taisan ...)
+	TODO: check
+CVE-2024-13021 (A vulnerability, which was classified as problematic, has been found i ...)
+	TODO: check
+CVE-2024-13020 (A vulnerability classified as critical was found in code-projects Chat ...)
+	TODO: check
+CVE-2024-13019 (A vulnerability classified as problematic has been found in code-proje ...)
+	TODO: check
+CVE-2024-13018 (A vulnerability was found in PHPGurukul Maid Hiring Management System  ...)
+	TODO: check
+CVE-2024-13017 (A vulnerability was found in PHPGurukul Maid Hiring Management System  ...)
+	TODO: check
+CVE-2024-13016 (A vulnerability was found in PHPGurukul Maid Hiring Management System  ...)
+	TODO: check
+CVE-2024-13015 (A vulnerability was found in PHPGurukul Maid Hiring Management System  ...)
+	TODO: check
+CVE-2024-13014 (A vulnerability has been found in PHPGurukul Maid Hiring Management Sy ...)
+	TODO: check
+CVE-2024-13013 (A vulnerability, which was classified as problematic, was found in PHP ...)
+	TODO: check
+CVE-2024-13012 (A vulnerability, which was classified as problematic, has been found i ...)
+	TODO: check
+CVE-2024-13008 (A vulnerability has been found in code-projects Responsive Hotel Site  ...)
+	TODO: check
+CVE-2024-13007 (A vulnerability, which was classified as critical, was found in Codezi ...)
+	TODO: check
+CVE-2024-56756 (In the Linux kernel, the following vulnerability has been resolved:  n ...)
 	- linux 6.12.3-1
 	NOTE: https://git.kernel.org/linus/3c2fb1ca8086eb139b2a551358137525ae8e0d7a (6.13-rc1)
-CVE-2024-56755 [netfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING]
+CVE-2024-56755 (In the Linux kernel, the following vulnerability has been resolved:  n ...)
 	- linux 6.12.3-1
 	[bullseye] - linux <not-affected> (Vulnerable code not present)
 	NOTE: https://git.kernel.org/linus/22f9400a6f3560629478e0a64247b8fcc811a24d (6.13-rc1)
-CVE-2024-56754 [crypto: caam - Fix the pointer passed to caam_qi_shutdown()]
+CVE-2024-56754 (In the Linux kernel, the following vulnerability has been resolved:  c ...)
 	- linux 6.12.3-1
 	NOTE: https://git.kernel.org/linus/ad980b04f51f7fb503530bd1cb328ba5e75a250e (6.13-rc1)
-CVE-2024-56753 [drm/amdgpu/gfx9: Add Cleaner Shader Deinitialization in gfx_v9_0 Module]
+CVE-2024-56753 (In the Linux kernel, the following vulnerability has been resolved:  d ...)
 	- linux <not-affected> (Vulnerable code not present)
 	NOTE: https://git.kernel.org/linus/e47cb9d2533200d49dd5364d4a148119492f8a3d (6.13-rc1)
-CVE-2024-56752 [drm/nouveau/gr/gf100: Fix missing unlock in gf100_gr_chan_new()]
+CVE-2024-56752 (In the Linux kernel, the following vulnerability has been resolved:  d ...)
 	- linux 6.12.3-1
 	[bookworm] - linux <not-affected> (Vulnerable code not present)
 	[bullseye] - linux <not-affected> (Vulnerable code not present)
 	NOTE: https://git.kernel.org/linus/a2f599046c671d6b46d93aed95b37241ce4504cf (6.13-rc1)
-CVE-2024-56751 [ipv6: release nexthop on device removal]
+CVE-2024-56751 (In the Linux kernel, the following vulnerability has been resolved:  i ...)
 	- linux 6.12.3-1
 	[bookworm] - linux <not-affected> (Vulnerable code not present)
 	[bullseye] - linux <not-affected> (Vulnerable code not present)
 	NOTE: https://git.kernel.org/linus/eb02688c5c45c3e7af7e71f036a7144f5639cbfe (6.13-rc1)
-CVE-2024-56750 [erofs: fix blksize < PAGE_SIZE for file-backed mounts]
+CVE-2024-56750 (In the Linux kernel, the following vulnerability has been resolved:  e ...)
 	- linux <not-affected> (Vulnerable code not present)
 	NOTE: https://git.kernel.org/linus/bae0854160939a64a092516ff1b2f221402b843b (6.13-rc1)
-CVE-2024-56749 [dlm: fix dlm_recover_members refcount on error]
+CVE-2024-56749 (In the Linux kernel, the following vulnerability has been resolved:  d ...)
 	- linux 6.12.3-1
 	[bookworm] - linux <not-affected> (Vulnerable code not present)
 	[bullseye] - linux <not-affected> (Vulnerable code not present)
 	NOTE: https://git.kernel.org/linus/200b977ebbc313a59174ba971006a231b3533dc5 (6.13-rc1)
-CVE-2024-56748 [scsi: qedf: Fix a possible memory leak in qedf_alloc_and_init_sb()]
+CVE-2024-56748 (In the Linux kernel, the following vulnerability has been resolved:  s ...)
 	- linux 6.12.3-1
 	NOTE: https://git.kernel.org/linus/c62c30429db3eb4ced35c7fcf6f04a61ce3a01bb (6.13-rc1)
-CVE-2024-56747 [scsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb()]
+CVE-2024-56747 (In the Linux kernel, the following vulnerability has been resolved:  s ...)
 	- linux 6.12.3-1
 	NOTE: https://git.kernel.org/linus/95bbdca4999bc59a72ebab01663d421d6ce5775d (6.13-rc1)
-CVE-2024-56746 [fbdev: sh7760fb: Fix a possible memory leak in sh7760fb_alloc_mem()]
+CVE-2024-56746 (In the Linux kernel, the following vulnerability has been resolved:  f ...)
 	- linux 6.12.3-1
 	NOTE: https://git.kernel.org/linus/f89d17ae2ac42931be2a0153fecbf8533280c927 (6.13-rc1)
-CVE-2024-56745 [PCI: Fix reset_method_store() memory leak]
+CVE-2024-56745 (In the Linux kernel, the following vulnerability has been resolved:  P ...)
 	- linux 6.12.3-1
 	[bullseye] - linux <not-affected> (Vulnerable code not present)
 	NOTE: https://git.kernel.org/linus/2985b1844f3f3447f2d938eff1ef6762592065a5 (6.13-rc1)
-CVE-2024-56744 [f2fs: fix to avoid potential deadlock in f2fs_record_stop_reason()]
+CVE-2024-56744 (In the Linux kernel, the following vulnerability has been resolved:  f ...)
 	- linux 6.12.3-1
 	[bookworm] - linux <not-affected> (Vulnerable code not present)
 	[bullseye] - linux <not-affected> (Vulnerable code not present)
 	NOTE: https://git.kernel.org/linus/f10a890308a7cd8794e21f646f09827c6cb4bf5d (6.13-rc1)
-CVE-2024-56743 [nfs_common: must not hold RCU while calling nfsd_file_put_local]
+CVE-2024-56743 (In the Linux kernel, the following vulnerability has been resolved:  n ...)
 	- linux <not-affected> (Vulnerable code not present)
 	NOTE: https://git.kernel.org/linus/c840b8e1f039e90f97ca55525667eb961422f86c (6.13-rc1)
-CVE-2024-56742 [vfio/mlx5: Fix an unwind issue in mlx5vf_add_migration_pages()]
+CVE-2024-56742 (In the Linux kernel, the following vulnerability has been resolved:  v ...)
 	- linux 6.12.3-1
 	[bullseye] - linux <not-affected> (Vulnerable code not present)
 	NOTE: https://git.kernel.org/linus/22e87bf3f77c18f5982c19ffe2732ef0c7a25f16 (6.13-rc1)
-CVE-2024-56741 [apparmor: test: Fix memory leak for aa_unpack_strdup()]
+CVE-2024-56741 (In the Linux kernel, the following vulnerability has been resolved:  a ...)
 	- linux 6.12.3-1
 	NOTE: https://git.kernel.org/linus/7290f59231910ccba427d441a6e8b8c6f6112448 (6.13-rc1)
-CVE-2024-56740 [nfs/localio: must clear res.replen in nfs_local_read_done]
+CVE-2024-56740 (In the Linux kernel, the following vulnerability has been resolved:  n ...)
 	- linux <not-affected> (Vulnerable code not present)
 	NOTE: https://git.kernel.org/linus/650703bc4ed3edf841e851c99ab8e7ba9e5262a3 (6.13-rc1)
-CVE-2024-56739 [rtc: check if __rtc_read_time was successful in rtc_timer_do_work()]
+CVE-2024-56739 (In the Linux kernel, the following vulnerability has been resolved:  r ...)
 	- linux 6.12.3-1
 	NOTE: https://git.kernel.org/linus/e8ba8a2bc4f60a1065f23d6a0e7cbea945a0f40d (6.13-rc1)
-CVE-2024-56730 [net/9p/usbg: fix handling of the failed kzalloc() memory allocation]
+CVE-2024-56730 (In the Linux kernel, the following vulnerability has been resolved:  n ...)
 	- linux <not-affected> (Vulnerable code not present)
 	NOTE: https://git.kernel.org/linus/ff1060813d9347e8c45c8b8cff93a4dfdb6726ad (6.13-rc1)
-CVE-2024-56729 [smb: Initialize cfid->tcon before performing network ops]
+CVE-2024-56729 (In the Linux kernel, the following vulnerability has been resolved:  s ...)
 	- linux 6.12.3-1
 	[bullseye] - linux <not-affected> (Vulnerable code not present)
 	NOTE: https://git.kernel.org/linus/c353ee4fb119a2582d0e011f66a76a38f5cf984d (6.13-rc1)
-CVE-2024-56728 [octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_ethtool.c]
+CVE-2024-56728 (In the Linux kernel, the following vulnerability has been resolved:  o ...)
 	- linux 6.12.3-1
 	NOTE: https://git.kernel.org/linus/e26f8eac6bb20b20fdb8f7dc695711ebce4c7c5c (6.13-rc1)
-CVE-2024-56727 [octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_flows.c]
+CVE-2024-56727 (In the Linux kernel, the following vulnerability has been resolved:  o ...)
 	- linux 6.12.3-1
 	[bullseye] - linux <not-affected> (Vulnerable code not present)
 	NOTE: https://git.kernel.org/linus/bd3110bc102ab6292656b8118be819faa0de8dd0 (6.13-rc1)
-CVE-2024-56726 [octeontx2-pf: handle otx2_mbox_get_rsp errors in cn10k.c]
+CVE-2024-56726 (In the Linux kernel, the following vulnerability has been resolved:  o ...)
 	- linux 6.12.3-1
 	[bullseye] - linux <not-affected> (Vulnerable code not present)
 	NOTE: https://git.kernel.org/linus/ac9183023b6a9c09467516abd8aab04f9a2f9564 (6.13-rc1)
-CVE-2024-56725 [octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_dcbnl.c]
+CVE-2024-56725 (In the Linux kernel, the following vulnerability has been resolved:  o ...)
 	- linux 6.12.3-1
 	[bullseye] - linux <not-affected> (Vulnerable code not present)
 	NOTE: https://git.kernel.org/linus/69297b0d3369488af259e3a7cf53d69157938ea1 (6.13-rc1)
-CVE-2024-56724 [mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device]
+CVE-2024-56724 (In the Linux kernel, the following vulnerability has been resolved:  m ...)
 	- linux 6.12.3-1
 	NOTE: https://git.kernel.org/linus/9b79d59e6b2b515eb9a22bc469ef7b8f0904fc73 (6.13-rc1)
-CVE-2024-56723 [mfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices]
+CVE-2024-56723 (In the Linux kernel, the following vulnerability has been resolved:  m ...)
 	- linux 6.12.3-1
 	NOTE: https://git.kernel.org/linus/0350d783ab888cb1cb48ced36cc28b372723f1a4 (6.13-rc1)
-CVE-2024-56722 [RDMA/hns: Fix cpu stuck caused by printings during reset]
+CVE-2024-56722 (In the Linux kernel, the following vulnerability has been resolved:  R ...)
 	- linux 6.12.3-1
 	NOTE: https://git.kernel.org/linus/323275ac2ff15b2b7b3eac391ae5d8c5a3c3a999 (6.13-rc1)
-CVE-2024-56721 [x86/CPU/AMD: Terminate the erratum_1386_microcode array]
+CVE-2024-56721 (In the Linux kernel, the following vulnerability has been resolved:  x ...)
 	- linux 6.12.3-1
 	[bookworm] - linux <not-affected> (Vulnerable code not present)
 	[bullseye] - linux <not-affected> (Vulnerable code not present)
 	NOTE: https://git.kernel.org/linus/ff6cdc407f4179748f4673c39b0921503199a0ad (6.13-rc1)
-CVE-2024-56720 [bpf, sockmap: Several fixes to bpf_msg_pop_data]
+CVE-2024-56720 (In the Linux kernel, the following vulnerability has been resolved:  b ...)
 	- linux 6.12.3-1
 	NOTE: https://git.kernel.org/linus/5d609ba262475db450ba69b8e8a557bd768ac07a (6.13-rc1)
-CVE-2024-56719 [net: stmmac: fix TSO DMA API usage causing oops]
+CVE-2024-56719 (In the Linux kernel, the following vulnerability has been resolved:  n ...)
 	- linux <unfixed>
 	[bullseye] - linux <not-affected> (Vulnerable code not present)
 	NOTE: https://git.kernel.org/linus/4c49f38e20a57f8abaebdf95b369295b153d1f8e (6.13-rc3)
-CVE-2024-56718 [net/smc: protect link down work from execute after lgr freed]
+CVE-2024-56718 (In the Linux kernel, the following vulnerability has been resolved:  n ...)
 	- linux <unfixed>
 	NOTE: https://git.kernel.org/linus/2b33eb8f1b3e8c2f87cfdbc8cc117f6bdfabc6ec (6.13-rc4)
-CVE-2024-56717 [net: mscc: ocelot: fix incorrect IFH SRC_PORT field in ocelot_ifh_set_basic()]
+CVE-2024-56717 (In the Linux kernel, the following vulnerability has been resolved:  n ...)
 	- linux <unfixed>
 	[bullseye] - linux <not-affected> (Vulnerable code not present)
 	NOTE: https://git.kernel.org/linus/2d5df3a680ffdaf606baa10636bdb1daf757832e (6.13-rc4)
-CVE-2024-56716 [netdevsim: prevent bad user input in nsim_dev_health_break_write()]
+CVE-2024-56716 (In the Linux kernel, the following vulnerability has been resolved:  n ...)
 	- linux <unfixed>
 	NOTE: https://git.kernel.org/linus/ee76746387f6233bdfa93d7406990f923641568f (6.13-rc4)
-CVE-2024-56715 [ionic: Fix netdev notifier unregister on failure]
+CVE-2024-56715 (In the Linux kernel, the following vulnerability has been resolved:  i ...)
 	- linux <unfixed>
 	NOTE: https://git.kernel.org/linus/9590d32e090ea2751e131ae5273859ca22f5ac14 (6.13-rc4)
-CVE-2024-56714 [ionic: no double destroy workqueue]
+CVE-2024-56714 (In the Linux kernel, the following vulnerability has been resolved:  i ...)
 	- linux <unfixed>
 	[bookworm] - linux <not-affected> (Vulnerable code not present)
 	[bullseye] - linux <not-affected> (Vulnerable code not present)
 	NOTE: https://git.kernel.org/linus/746e6ae2e202b062b9deee7bd86d94937997ecd7 (6.13-rc4)
-CVE-2024-56713 [net: netdevsim: fix nsim_pp_hold_write()]
+CVE-2024-56713 (In the Linux kernel, the following vulnerability has been resolved:  n ...)
 	- linux <unfixed>
 	[bookworm] - linux <not-affected> (Vulnerable code not present)
 	[bullseye] - linux <not-affected> (Vulnerable code not present)
 	NOTE: https://git.kernel.org/linus/b9b8301d369b4c876de5255dbf067b19ba88ac71 (6.13-rc4)
-CVE-2024-56712 [udmabuf: fix memory leak on last export_udmabuf() error path]
+CVE-2024-56712 (In the Linux kernel, the following vulnerability has been resolved:  u ...)
 	- linux <unfixed>
 	NOTE: https://git.kernel.org/linus/f49856f525acd5bef52ae28b7da2e001bbe7439e (6.13-rc4)
-CVE-2024-56711 [drm/panel: himax-hx83102: Add a check to prevent NULL pointer dereference]
+CVE-2024-56711 (In the Linux kernel, the following vulnerability has been resolved:  d ...)
 	- linux <unfixed>
 	[bookworm] - linux <not-affected> (Vulnerable code not present)
 	[bullseye] - linux <not-affected> (Vulnerable code not present)
 	NOTE: https://git.kernel.org/linus/e1e1af9148dc4c866eda3fb59cd6ec3c7ea34b1d (6.13-rc4)
-CVE-2024-56710 [ceph: fix memory leak in ceph_direct_read_write()]
+CVE-2024-56710 (In the Linux kernel, the following vulnerability has been resolved:  c ...)
 	- linux <unfixed>
 	[bookworm] - linux <not-affected> (Vulnerable code not present)
 	[bullseye] - linux <not-affected> (Vulnerable code not present)
 	NOTE: https://git.kernel.org/linus/66e0c4f91461d17d48071695271c824620bed4ef (6.13-rc4)
-CVE-2024-56709 [io_uring: check if iowq is killed before queuing]
+CVE-2024-56709 (In the Linux kernel, the following vulnerability has been resolved:  i ...)
 	- linux <unfixed>
 	[bullseye] - linux <not-affected> (Vulnerable code not present)
 	NOTE: https://git.kernel.org/linus/dbd2ca9367eb19bc5e269b8c58b0b1514ada9156 (6.13-rc4)
@@ -4229,6 +4255,7 @@ CVE-2024-47835 (GStreamer is a library for constructing graphs of media-handling
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/4c40f73b7002967e824ef34a5435282f4a0ea363
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/1a5fdba14a1ccfe473bc4429f22ee5bbaee034eb (1.24.10)
 CVE-2024-47834 (GStreamer is a library for constructing graphs of media-handling compo ...)
+	{DSA-5838-1}
 	- gst-plugins-good1.0 1.24.10-1
 	- gst-plugins-good0.10 <removed>
 	NOTE: https://securitylab.github.com/advisories/GHSL-2024-280_Gstreamer/
@@ -4237,6 +4264,7 @@ CVE-2024-47834 (GStreamer is a library for constructing graphs of media-handling
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8057
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8058 (1.24.10)
 CVE-2024-47778 (GStreamer is a library for constructing graphs of media-handling compo ...)
+	{DSA-5838-1}
 	- gst-plugins-good1.0 1.24.10-1
 	- gst-plugins-good0.10 <removed>
 	NOTE: https://securitylab.github.com/advisories/GHSL-2024-258_Gstreamer/
@@ -4246,6 +4274,7 @@ CVE-2024-47778 (GStreamer is a library for constructing graphs of media-handling
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8042
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8054 (1.24.10)
 CVE-2024-47777 (GStreamer is a library for constructing graphs of media-handling compo ...)
+	{DSA-5838-1}
 	- gst-plugins-good1.0 1.24.10-1
 	- gst-plugins-good0.10 <removed>
 	NOTE: https://securitylab.github.com/advisories/GHSL-2024-259_Gstreamer/
@@ -4255,6 +4284,7 @@ CVE-2024-47777 (GStreamer is a library for constructing graphs of media-handling
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8042
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8054 (1.24.10)
 CVE-2024-47776 (GStreamer is a library for constructing graphs of media-handling compo ...)
+	{DSA-5838-1}
 	- gst-plugins-good1.0 1.24.10-1
 	- gst-plugins-good0.10 <removed>
 	NOTE: https://securitylab.github.com/advisories/GHSL-2024-260_Gstreamer/
@@ -4264,6 +4294,7 @@ CVE-2024-47776 (GStreamer is a library for constructing graphs of media-handling
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8042
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8054 (1.24.10)
 CVE-2024-47775 (GStreamer is a library for constructing graphs of media-handling compo ...)
+	{DSA-5838-1}
 	- gst-plugins-good1.0 1.24.10-1
 	- gst-plugins-good0.10 <removed>
 	NOTE: https://securitylab.github.com/advisories/GHSL-2024-261_Gstreamer/
@@ -4273,6 +4304,7 @@ CVE-2024-47775 (GStreamer is a library for constructing graphs of media-handling
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8042
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8054 (1.24.10)
 CVE-2024-47774 (GStreamer is a library for constructing graphs of media-handling compo ...)
+	{DSA-5838-1}
 	- gst-plugins-good1.0 1.24.10-1
 	- gst-plugins-good0.10 <removed>
 	NOTE: https://securitylab.github.com/advisories/GHSL-2024-262_Gstreamer/
@@ -4300,6 +4332,7 @@ CVE-2024-47615 (GStreamer is a library for constructing graphs of media-handling
 	NOTE: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/30fa21ac45ef5dad2fef0d98f0e7130c75f0b628 (1.24.10)
 	NOTE: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/c94c44ce497d285ebcfe866b9faaae9c66c81132 (1.24.10)
 CVE-2024-47613 (GStreamer is a library for constructing graphs of media-handling compo ...)
+	{DSA-5838-1}
 	- gst-plugins-good1.0 1.24.10-1
 	- gst-plugins-good0.10 <removed>
 	NOTE: https://securitylab.github.com/advisories/GHSL-2024-115_GHSL-2024-118_Gstreamer/
@@ -4317,7 +4350,7 @@ CVE-2024-47607 (GStreamer is a library for constructing graphs of media-handling
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/2838374d6ee4a0c9c4c4221ac46d5c1688f26e59
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/804eca458fb547942ed70b88c021b996be9228a2 (1.24.10)
 CVE-2024-47606 (GStreamer is a library for constructing graphs of media-handling compo ...)
-	{DSA-5832-1 DLA-3994-1}
+	{DSA-5838-1 DSA-5832-1 DLA-3994-1}
 	- gstreamer1.0 1.24.10-1
 	- gstreamer0.10 <not-affected> (Vulnerable code introduced in 1.0)
 	- gst-plugins-good1.0 1.24.10-1
@@ -4330,6 +4363,7 @@ CVE-2024-47606 (GStreamer is a library for constructing graphs of media-handling
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/f8e398c46fc074f266edb3f20479c0ca31b52448
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/2d7a11f5e6be5c323b2fed8158bc9df37752e495 (1.24.10)
 CVE-2024-47603 (GStreamer is a library for constructing graphs of media-handling compo ...)
+	{DSA-5838-1}
 	- gst-plugins-good1.0 1.24.10-1
 	- gst-plugins-good0.10 <removed>
 	NOTE: https://securitylab.github.com/advisories/GHSL-2024-251_Gstreamer/
@@ -4338,6 +4372,7 @@ CVE-2024-47603 (GStreamer is a library for constructing graphs of media-handling
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8057
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8058 (1.24.10)
 CVE-2024-47602 (GStreamer is a library for constructing graphs of media-handling compo ...)
+	{DSA-5838-1}
 	- gst-plugins-good1.0 1.24.10-1
 	- gst-plugins-good0.10 <removed>
 	NOTE: https://securitylab.github.com/advisories/GHSL-2024-250_Gstreamer/
@@ -4346,6 +4381,7 @@ CVE-2024-47602 (GStreamer is a library for constructing graphs of media-handling
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8057
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8058 (1.24.10)
 CVE-2024-47601 (GStreamer is a library for constructing graphs of media-handling compo ...)
+	{DSA-5838-1}
 	- gst-plugins-good1.0 1.24.10-1
 	- gst-plugins-good0.10 <removed>
 	NOTE: https://securitylab.github.com/advisories/GHSL-2024-249_Gstreamer/
@@ -4363,6 +4399,7 @@ CVE-2024-47600 (GStreamer is a library for constructing graphs of media-handling
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/aa07d94c10d71fac389dbbb264a59c1f6117eead
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/5b205225e2c6a19ddcace350fdc18a0edf87bcb5 (1.24.10)
 CVE-2024-47599 (GStreamer is a library for constructing graphs of media-handling compo ...)
+	{DSA-5838-1}
 	- gst-plugins-good1.0 1.24.10-1
 	- gst-plugins-good0.10 <removed>
 	NOTE: https://securitylab.github.com/advisories/GHSL-2024-247_Gstreamer/
@@ -4371,6 +4408,7 @@ CVE-2024-47599 (GStreamer is a library for constructing graphs of media-handling
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/3cdf206f4fc5a9860bfe1437ed3d01e7d23c6c3e
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/8b1c866e93749fd42d1908ec77a4f339343acbb2 (1.24.10)
 CVE-2024-47598 (GStreamer is a library for constructing graphs of media-handling compo ...)
+	{DSA-5838-1}
 	- gst-plugins-good1.0 1.24.10-1
 	- gst-plugins-good0.10 <removed>
 	NOTE: https://securitylab.github.com/advisories/GHSL-2024-246_Gstreamer/
@@ -4379,6 +4417,7 @@ CVE-2024-47598 (GStreamer is a library for constructing graphs of media-handling
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8059
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8060 (1.24.10)
 CVE-2024-47597 (GStreamer is a library for constructing graphs of media-handling compo ...)
+	{DSA-5838-1}
 	- gst-plugins-good1.0 1.24.10-1
 	- gst-plugins-good0.10 <removed>
 	NOTE: https://securitylab.github.com/advisories/GHSL-2024-245_Gstreamer/
@@ -4387,6 +4426,7 @@ CVE-2024-47597 (GStreamer is a library for constructing graphs of media-handling
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8059
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8060 (1.24.10)
 CVE-2024-47596 (GStreamer is a library for constructing graphs of media-handling compo ...)
+	{DSA-5838-1}
 	- gst-plugins-good1.0 1.24.10-1
 	- gst-plugins-good0.10 <removed>
 	NOTE: https://securitylab.github.com/advisories/GHSL-2024-244_Gstreamer/
@@ -4395,6 +4435,7 @@ CVE-2024-47596 (GStreamer is a library for constructing graphs of media-handling
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8059
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8060 (1.24.10)
 CVE-2024-47546 (GStreamer is a library for constructing graphs of media-handling compo ...)
+	{DSA-5838-1}
 	- gst-plugins-good1.0 1.24.10-1
 	- gst-plugins-good0.10 <removed>
 	NOTE: https://securitylab.github.com/advisories/GHSL-2024-243_Gstreamer/
@@ -4403,6 +4444,7 @@ CVE-2024-47546 (GStreamer is a library for constructing graphs of media-handling
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8059
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8060 (1.24.10)
 CVE-2024-47545 (GStreamer is a library for constructing graphs of media-handling compo ...)
+	{DSA-5838-1}
 	- gst-plugins-good1.0 1.24.10-1
 	- gst-plugins-good0.10 <removed>
 	NOTE: https://securitylab.github.com/advisories/GHSL-2024-242_Gstreamer/
@@ -4411,6 +4453,7 @@ CVE-2024-47545 (GStreamer is a library for constructing graphs of media-handling
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8059
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8060 (1.24.10)
 CVE-2024-47544 (GStreamer is a library for constructing graphs of media-handling compo ...)
+	{DSA-5838-1}
 	- gst-plugins-good1.0 1.24.10-1
 	- gst-plugins-good0.10 <removed>
 	NOTE: https://securitylab.github.com/advisories/GHSL-2024-238_Gstreamer/
@@ -4419,6 +4462,7 @@ CVE-2024-47544 (GStreamer is a library for constructing graphs of media-handling
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8059
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/8060 (1.24.10)
 CVE-2024-47543 (GStreamer is a library for constructing graphs of media-handling compo ...)
+	{DSA-5838-1}
 	- gst-plugins-good1.0 1.24.10-1
 	- gst-plugins-good0.10 <removed>
 	NOTE: https://securitylab.github.com/advisories/GHSL-2024-236_Gstreamer/
@@ -4448,6 +4492,7 @@ CVE-2024-47541 (GStreamer is a library for constructing graphs of media-handling
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/b66cf81e99ab9f400b6aea79a4b597c5ddac324d (1.24.10)
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/7108073b5be73eb2482eb8494745962b8c0571f1 (1.24.10)
 CVE-2024-47540 (GStreamer is a library for constructing graphs of media-handling compo ...)
+	{DSA-5838-1}
 	- gst-plugins-good1.0 1.24.10-1
 	- gst-plugins-good0.10 <removed>
 	NOTE: https://securitylab.github.com/advisories/GHSL-2024-197_GStreamer/
@@ -4456,6 +4501,7 @@ CVE-2024-47540 (GStreamer is a library for constructing graphs of media-handling
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/c0dceda8e969f74f2326539c1f0368c2fd7afcd7
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/a16851ebf34a9f9be4285b2c0d75fe7844354efe (1.24.10)
 CVE-2024-47539 (GStreamer is a library for constructing graphs of media-handling compo ...)
+	{DSA-5838-1}
 	- gst-plugins-good1.0 1.24.10-1
 	- gst-plugins-good0.10 <removed>
 	NOTE: https://securitylab.github.com/advisories/GHSL-2024-195_Gstreamer/
@@ -4473,6 +4519,7 @@ CVE-2024-47538 (GStreamer is a library for constructing graphs of media-handling
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/5093691ef2ef5c7a6e03a20bce39db143b9cdc43
 	NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/7eb26b198beffecdba4dbb64299f9cb09a9181d6 (1.24.10)
 CVE-2024-47537 (GStreamer is a library for constructing graphs of media-handling compo ...)
+	{DSA-5838-1}
 	- gst-plugins-good1.0 1.24.10-1
 	- gst-plugins-good0.10 <removed>
 	NOTE: https://securitylab.github.com/advisories/GHSL-2024-094_Gstreamer/



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a2c426e005b3defd8e13dd03a273e130327fdbc0

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a2c426e005b3defd8e13dd03a273e130327fdbc0
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241229/441a3b3a/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list