[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Jan 6 08:12:11 GMT 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a544683d by security tracker role at 2024-01-06T08:12:00+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,17 @@
+CVE-2024-21642 (D-Tale is a visualizer for Pandas data structures. Users hosting versi ...)
+ TODO: check
+CVE-2024-21641 (Flarum is open source discussion platform software. Prior to version 1 ...)
+ TODO: check
+CVE-2023-50612 (Insecure Permissions vulnerability in fit2cloud Cloud Explorer Lite ve ...)
+ TODO: check
+CVE-2023-50609 (Cross Site Scripting (XSS) vulnerability in AVA teaching video applica ...)
+ TODO: check
+CVE-2023-50121 (Autel EVO NANO drone flight control firmware version 1.6.5 is vulnerab ...)
+ TODO: check
+CVE-2023-46953 (SQL Injection vulnerability in ABO.CMS v.5.9.3, allows remote attacker ...)
+ TODO: check
+CVE-2023-39853 (SQL Injection vulnerability in Dzzoffice version 2.01, allows remote a ...)
+ TODO: check
CVE-2024-0247 (A vulnerability classified as critical was found in CodeAstro Online F ...)
NOT-FOR-US: CodeAstro Online Food Ordering System
CVE-2024-0246 (A vulnerability classified as problematic has been found in IceWarp 12 ...)
@@ -1624,7 +1638,7 @@ CVE-2023-51767 (OpenSSH through 9.6, when common types of DRAM are used, might a
[buster] - openssh <postponed> (Revisit once hardening/mitigation for Rowhammer type of attack exists)
NOTE: https://arxiv.org/abs/2309.02545
CVE-2023-51766 (Exim before 4.97.1 allows SMTP smuggling in certain PIPELINING/CHUNKIN ...)
- {DSA-5597-1}
+ {DSA-5597-1 DLA-3708-1}
- exim4 4.97-3 (bug #1059387)
NOTE: https://sec-consult.com/blog/detail/smtp-smuggling-spoofing-e-mails-worldwide/
NOTE: https://www.openwall.com/lists/oss-security/2023/12/21/6
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a544683dd9f2d48eb0695d447a2758c5e53a29ff
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a544683dd9f2d48eb0695d447a2758c5e53a29ff
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240106/5c447c9a/attachment.htm>
More information about the debian-security-tracker-commits
mailing list