[Git][security-tracker-team/security-tracker][master] automatic update

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
120a7159 by security tracker role at 2024-12-31T08:12:01+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,45 @@
+CVE-2024-45497 (A flaw was found in the OpenShift build process, where the docker-buil ...)
+	TODO: check
+CVE-2024-13058 (An issue exists in SoftIron HyperCloud  where authenticated, but non-a ...)
+	TODO: check
+CVE-2024-13051 (Ashlar-Vellum Graphite VC6 File Parsing Heap-based Buffer Overflow Rem ...)
+	TODO: check
+CVE-2024-13050 (Ashlar-Vellum Graphite VC6 File Parsing Heap-based Buffer Overflow Rem ...)
+	TODO: check
+CVE-2024-13049 (Ashlar-Vellum Cobalt XE File Parsing Type Confusion Remote Code Execut ...)
+	TODO: check
+CVE-2024-13048 (Ashlar-Vellum Cobalt XE File Parsing Out-Of-Bounds Write Remote Code E ...)
+	TODO: check
+CVE-2024-13047 (Ashlar-Vellum Cobalt CO File Parsing Type Confusion Remote Code Execut ...)
+	TODO: check
+CVE-2024-13046 (Ashlar-Vellum Cobalt CO File Parsing Out-Of-Bounds Write Remote Code E ...)
+	TODO: check
+CVE-2024-13045 (Ashlar-Vellum Cobalt AR File Parsing Stack-based Buffer Overflow Remot ...)
+	TODO: check
+CVE-2024-13044 (Ashlar-Vellum Cobalt AR File Parsing Out-Of-Bounds Write Remote Code E ...)
+	TODO: check
+CVE-2024-13043 (Panda Security Dome Link Following Local Privilege Escalation Vulnerab ...)
+	TODO: check
+CVE-2024-13042 (A vulnerability was found in Tsinghua Unigroup Electronic Archives Man ...)
+	TODO: check
+CVE-2024-13040 (The QOCA aim from Quanta Computer has an Authorization Bypass Through  ...)
+	TODO: check
+CVE-2024-12839 (The login mechanism via device authentication of CGFIDO from Changing  ...)
+	TODO: check
+CVE-2024-12838 (The passwordless login mechanism in CGFIDO from Changing Information T ...)
+	TODO: check
+CVE-2024-12753 (Foxit PDF Reader Link Following Local Privilege Escalation Vulnerabili ...)
+	TODO: check
+CVE-2024-12752 (Foxit PDF Reader AcroForm Memory Corruption Remote Code Execution Vuln ...)
+	TODO: check
+CVE-2024-12751 (Foxit PDF Reader AcroForm Out-Of-Bounds Read Remote Code Execution Vul ...)
+	TODO: check
+CVE-2024-11972 (The Hunk Companion WordPress plugin before 1.9.0 does not correctly au ...)
+	TODO: check
+CVE-2024-11946 (iXsystems TrueNAS CORE fetch_plugin_packagesites tar Cleartext Transmi ...)
+	TODO: check
+CVE-2024-11944 (iXsystems TrueNAS CORE tarfile.extractall Directory Traversal Remote C ...)
+	TODO: check
 CVE-2024-56801 (Tasklists provides plugin tasklists for GLPI. Versions prior to 2.0.4  ...)
 	NOT-FOR-US: Tasklists plugin for GLPI
 CVE-2024-56800 (Firecrawl is a web scraper that allows users to extract the content of ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/120a71597a0ff1c2910218d5c15e7f155d2e5d48

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/120a71597a0ff1c2910218d5c15e7f155d2e5d48
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241231/143315bf/attachment-0001.htm>