[Git][security-tracker-team/security-tracker][master] CVE-2024-5187 (onnx) add note about PR
Matthias Geerdsen (@kosh)
gitlab at salsa.debian.org
Sat Jun 8 22:42:20 BST 2024
Matthias Geerdsen pushed to branch master at Debian Security Tracker / security-tracker
Commits:
b2f53c55 by Matthias Geerdsen at 2024-06-08T23:41:51+02:00
CVE-2024-5187 (onnx) add note about PR
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -509,6 +509,7 @@ CVE-2024-5188 (The Essential Addons for Elementor \u2013 Best Elementor Template
CVE-2024-5187 (A vulnerability in the `download_model_with_test_data` function of the ...)
- onnx <unfixed>
NOTE: https://huntr.com/bounties/50235ebd-3410-4ada-b064-1a648e11237e
+ NOTE: https://github.com/onnx/onnx/pull/6164
CVE-2024-5186 (A Server-Side Request Forgery (SSRF) vulnerability exists in the file ...)
NOT-FOR-US: privategpt
CVE-2024-5133 (In lunary-ai/lunary version 1.2.4, an account takeover vulnerability e ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b2f53c55c1509d4005732c9003372e801b8afea8
--
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b2f53c55c1509d4005732c9003372e801b8afea8
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240608/e281e5a5/attachment.htm>
More information about the debian-security-tracker-commits
mailing list