[Git][security-tracker-team/security-tracker][master] Add reference to SA-2024-0003 for orc issue
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Jul 27 07:10:18 BST 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
e4785184 by Salvatore Bonaccorso at 2024-07-27T08:03:22+02:00
Add reference to SA-2024-0003 for orc issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -124,6 +124,7 @@ CVE-2024-41468 (Tenda FH1201 v1.2.0.14 was discovered to contain a command injec
NOT-FOR-US: Tenda
CVE-2024-40897 (Stack-based buffer overflow vulnerability exists in orcparse.c of ORC ...)
- orc 1:0.4.39-1
+ NOTE: https://gstreamer.freedesktop.org/security/sa-2024-0003.html
NOTE: Fixed by: https://gitlab.freedesktop.org/gstreamer/orc/-/commit/fb7db9ae3e8ac271651d1884a3611d30bac04a98 (0.4.39)
CVE-2024-3938 (The "reset password" login page accepted an HTML injection via URL par ...)
NOT-FOR-US: DotCMS
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e4785184da11b1d8366df7b72c91ab3d3485feba
--
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e4785184da11b1d8366df7b72c91ab3d3485feba
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240727/77154867/attachment.htm>
More information about the debian-security-tracker-commits
mailing list