[Git][security-tracker-team/security-tracker][master] automatic update

Sat Jun 8 09:12:05 BST 2024


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f9269492 by security tracker role at 2024-06-08T08:11:49+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,31 @@
+CVE-2024-5770 (The WP Force SSL & HTTPS SSL Redirect plugin for WordPress is vulnerab ...)
+	TODO: check
+CVE-2024-5758 (The Post Grid Gutenberg Blocks and WordPress Blog Plugin \u2013 PostX  ...)
+	TODO: check
+CVE-2024-5663 (The Cards for Beaver Builder plugin for WordPress is vulnerable to Sto ...)
+	TODO: check
+CVE-2024-5638 (The Formula theme for WordPress is vulnerable to Reflected Cross-Site  ...)
+	TODO: check
+CVE-2024-5613 (The Formula theme for WordPress is vulnerable to Reflected Cross-Site  ...)
+	TODO: check
+CVE-2024-5091 (The SKT Addons for Elementor plugin for WordPress is vulnerable to Sto ...)
+	TODO: check
+CVE-2024-5087 (The Minimal Coming Soon \u2013 Coming Soon Page plugin for WordPress i ...)
+	TODO: check
+CVE-2024-4661 (The WP Reset plugin for WordPress is vulnerable to unauthorized modifi ...)
+	TODO: check
+CVE-2024-4468 (The Salon booking system plugin for WordPress is vulnerable to unautho ...)
+	TODO: check
+CVE-2024-3668 (The PowerPack Pro for Elementor plugin for WordPress is vulnerable to  ...)
+	TODO: check
+CVE-2024-1694 (Inappropriate implementation in Google Updator prior to 1.3.36.351 in  ...)
+	TODO: check
+CVE-2023-7261 (Inappropriate implementation in Google Updator prior to 1.3.36.351 in  ...)
+	TODO: check
+CVE-2023-49224 (Precor touchscreen console P62, P80, and P82 contains a default SSH pu ...)
+	TODO: check
+CVE-2023-49223 (Precor touchscreen console P62, P80, and P82 could allow a remote atta ...)
+	TODO: check
 CVE-2024-0092
 	- nvidia-graphics-drivers <unfixed> (bug #1072792)
 	[bookworm] - nvidia-graphics-drivers <no-dsa> (Non-free not supported)
@@ -40432,7 +40460,7 @@ CVE-2023-48202 (Cross-Site Scripting (XSS) vulnerability in Sunlight CMS 8.0.1 a
 	NOT-FOR-US: Sunlight CMS
 CVE-2023-48201 (Cross Site Scripting (XSS) vulnerability in Sunlight CMS v.8.0.1, allo ...)
 	NOT-FOR-US: Sunlight CMS
-CVE-2024-0444 [GStreamer-SA-2024-0001: AV1 codec parser potential buffer overflow during tile list parsing]
+CVE-2024-0444 (GStreamer AV1 Video Parsing Stack-based Buffer Overflow Remote Code Ex ...)
 	{DSA-5608-1}
 	- gst-plugins-bad1.0 1.22.9-1
 	[buster] - gst-plugins-bad1.0 <not-affected> (AV1 parser introduced in 1.17.1)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f92694922c99cd13b1a649d86b9295255951eb81

-- 
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f92694922c99cd13b1a649d86b9295255951eb81
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240608/59b0b4e2/attachment-0001.htm>
