[Git][security-tracker-team/security-tracker][master] Add eight new biosig CVEs

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a72bcaa3 by Salvatore Bonaccorso at 2024-02-20T22:42:11+01:00
Add eight new biosig CVEs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -62,15 +62,20 @@ CVE-2024-24474 (Buffer Overflow vulnerability in Qemu before v.8.2.0 allows a re
 	NOTE: https://gitlab.com/qemu-project/qemu/-/issues/1810
 	NOTE: https://github.com/qemu/qemu/commit/77668e4b9bca03a856c27ba899a2513ddf52bb52 (v8.2.0-rc0)
 CVE-2024-23809 (A double-free vulnerability exists in the BrainVision ASCII Header Par ...)
-	TODO: check
+	- biosig 2.6.0-1
+	NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2024-1919
 CVE-2024-23606 (An out-of-bounds write vulnerability exists in the sopen_FAMOS_read fu ...)
-	TODO: check
+	- biosig 2.6.0-1
+	NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2024-1925
 CVE-2024-23313 (An integer underflow vulnerability exists in the sopen_FAMOS_read func ...)
-	TODO: check
+	- biosig 2.6.0-1
+	NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2024-1922
 CVE-2024-23310 (A use-after-free vulnerability exists in the sopen_FAMOS_read function ...)
-	TODO: check
+	- biosig 2.6.0-1
+	NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2024-1923
 CVE-2024-23305 (An out-of-bounds write vulnerability exists in the BrainVisionMarker P ...)
-	TODO: check
+	- biosig 2.6.0-1
+	NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2024-1918
 CVE-2024-22824 (An issue in Timo v.2.0.3 allows a remote attacker to execute arbitrary ...)
 	NOT-FOR-US: Timo
 CVE-2024-22250 (Session Hijack vulnerability in Deprecated VMware Enhanced Authenticat ...)
@@ -78,13 +83,16 @@ CVE-2024-22250 (Session Hijack vulnerability in Deprecated VMware Enhanced Authe
 CVE-2024-22245 (Arbitrary Authentication Relay and Session Hijack vulnerabilities in t ...)
 	NOT-FOR-US: VMware
 CVE-2024-22097 (A double-free vulnerability exists in the BrainVision Header Parsing f ...)
-	TODO: check
+	- biosig 2.6.0-1
+	NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2024-1917
 CVE-2024-22054 (A malformed discovery packet sent by a malicious actor with preexistin ...)
 	TODO: check
 CVE-2024-21812 (An integer overflow vulnerability exists in the sopen_FAMOS_read funct ...)
-	TODO: check
+	- biosig 2.6.0-1
+	NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2024-1921
 CVE-2024-21795 (A heap-based buffer overflow vulnerability exists in the .egi parsing  ...)
-	TODO: check
+	- biosig 2.6.0-1
+	NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2024-1920
 CVE-2024-21726 (Inadequate content filtering leads to XSS vulnerabilities in various c ...)
 	NOT-FOR-US: Joomla!
 CVE-2024-21725 (Inadequate escaping of mail addresses lead to XSS vulnerabilities in v ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a72bcaa3a9caddc77003b7695095582a72c9e97d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a72bcaa3a9caddc77003b7695095582a72c9e97d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240220/89444003/attachment.htm>