[Git][security-tracker-team/security-tracker][master] Add CVE-2024-37903/mastodon

Fri Jul 5 21:58:58 BST 2024


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
db4c217e by Salvatore Bonaccorso at 2024-07-05T22:58:26+02:00
Add CVE-2024-37903/mastodon

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -54,7 +54,7 @@ CVE-2024-39019 (idccms v1.35 was discovered to contain a Cross-Site Request Forg
 CVE-2024-38346 (The CloudStack cluster service runs on unauthenticated port (default 9 ...)
 	NOT-FOR-US: Apache CloudStack
 CVE-2024-37903 (Mastodon is a self-hosted, federated microblogging platform. Starting  ...)
-	TODO: check
+	- mastodon <itp> (bug #859741)
 CVE-2024-37769 (Insecure permissions in 14Finger v1.1 allow attackers to escalate priv ...)
 	NOT-FOR-US: 14Finger
 CVE-2024-37768 (14Finger v1.1 was discovered to contain an arbitrary user deletion vul ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/db4c217e951503fca6cd2cfd1c666b69af48955f

-- 
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/db4c217e951503fca6cd2cfd1c666b69af48955f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240705/3206fc57/attachment-0001.htm>
