[Git][security-tracker-team/security-tracker][master] Add CVE-2024-23831/ledgersmb

Fri Feb 2 20:46:26 GMT 2024


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
76085f53 by Salvatore Bonaccorso at 2024-02-02T21:45:57+01:00
Add CVE-2024-23831/ledgersmb

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -21,7 +21,9 @@ CVE-2024-24029 (JFinalCMS 5.0.0 is vulnerable to SQL injection via /admin/conten
 CVE-2024-23895 (A vulnerability has been reported in Cups Easy (Purchase & Inventory), ...)
 	NOT-FOR-US: Cups Easy (Purchase & Inventory)
 CVE-2024-23831 (LedgerSMB is a free web-based double-entry accounting system. When a L ...)
-	TODO: check
+	- ledgersmb <unfixed>
+	NOTE: https://github.com/ledgersmb/LedgerSMB/security/advisories/GHSA-98ff-f638-qxjm
+	NOTE: https://github.com/ledgersmb/LedgerSMB/commit/8c2ae5be68a782d62cb9c0e17c0127bf30ef4165
 CVE-2024-23824 (mailcow is a dockerized email package, with multiple containers linked ...)
 	NOT-FOR-US: mailcow
 CVE-2024-23635 (AntiSamy is a library for performing fast, configurable cleansing of H ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/76085f5375dea62270aa2149fcd263b308be4757

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/76085f5375dea62270aa2149fcd263b308be4757
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240202/e2eb340b/attachment.htm>
