[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Jan 27 08:12:25 GMT 2024



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
761c5455 by security tracker role at 2024-01-27T08:12:12+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,47 @@
+CVE-2024-23506 (Exposure of Sensitive Information to an Unauthorized Actor vulnerabili ...)
+	TODO: check
+CVE-2024-22862 (Integer overflow vulnerability in FFmpeg before n6.1, allows remote at ...)
+	TODO: check
+CVE-2024-22861 (Integer overflow vulnerability in FFmpeg before n6.1, allows attackers ...)
+	TODO: check
+CVE-2024-22860 (Integer overflow vulnerability in FFmpeg before n6.1, allows remote at ...)
+	TODO: check
+CVE-2024-22283 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
+	TODO: check
+CVE-2024-22147 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
+	TODO: check
+CVE-2024-0958 (A vulnerability was found in CodeAstro Stock Management System 1.0 and ...)
+	TODO: check
+CVE-2024-0948 (A vulnerability, which was classified as problematic, has been found i ...)
+	TODO: check
+CVE-2024-0946 (A vulnerability classified as critical was found in 60IndexPage up to  ...)
+	TODO: check
+CVE-2024-0945 (A vulnerability classified as critical has been found in 60IndexPage u ...)
+	TODO: check
+CVE-2024-0824 (The Exclusive Addons for Elementor plugin for WordPress is vulnerable  ...)
+	TODO: check
+CVE-2024-0697 (The Backuply \u2013 Backup, Restore, Migrate and Clone plugin for Word ...)
+	TODO: check
+CVE-2024-0667 (The Form Maker by 10Web \u2013 Mobile-Friendly Drag & Drop Contact For ...)
+	TODO: check
+CVE-2024-0664 (The Meks Smart Social Widget plugin for WordPress is vulnerable to Sto ...)
+	TODO: check
+CVE-2024-0618 (The Contact Form Plugin \u2013 Fastest Contact Form Builder Plugin for ...)
+	TODO: check
+CVE-2023-6497 (The WordPress Simple Shopping Cart plugin for WordPress is vulnerable  ...)
+	TODO: check
+CVE-2023-6482 (Use of encryption key derived from static information in Synaptics Fin ...)
+	TODO: check
+CVE-2023-6470
+	REJECTED
+CVE-2023-52389 (UTF32Encoding.cpp in POCO has a Poco::UTF32Encoding integer overflow a ...)
+	TODO: check
+CVE-2023-52187 (Exposure of Sensitive Information to an Unauthorized Actor vulnerabili ...)
+	TODO: check
+CVE-2023-48202 (Cross-Site Scripting (XSS) vulnerability in Sunlight CMS 8.0.1 allows  ...)
+	TODO: check
+CVE-2023-48201 (Cross Site Scripting (XSS) vulnerability in Sunlight CMS v.8.0.1, allo ...)
+	TODO: check
 CVE-2024-0444 [GStreamer-SA-2024-0001: AV1 codec parser potential buffer overflow during tile list parsing]
 	- gst-plugins-bad1.0 1.22.9-1
 	- gst-plugins-bad0.10 <removed>
@@ -70835,6 +70879,7 @@ CVE-2023-22086 (Vulnerability in the Oracle WebLogic Server product of Oracle Fu
 CVE-2023-22085 (Vulnerability in the Hospitality OPERA 5 Property Services product of  ...)
 	NOT-FOR-US: Oracle
 CVE-2023-22084 (Vulnerability in the MySQL Server product of Oracle MySQL (component:  ...)
+	{DLA-3722-1}
 	- mariadb 1:10.11.6-1
 	[bookworm] - mariadb <no-dsa> (Minor issue, will be fixed via point update)
 	- mariadb-10.5 <removed>



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/761c54551860a18917f64e3236d7750a70a00272

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/761c54551860a18917f64e3236d7750a70a00272
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240127/a0a50cb9/attachment.htm>


More information about the debian-security-tracker-commits mailing list