[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Jun 15 21:12:59 BST 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3f3b5155 by security tracker role at 2024-06-15T20:12:27+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,39 @@
+CVE-2024-6016 (A vulnerability, which was classified as critical, has been found in i ...)
+	TODO: check
+CVE-2024-6015 (A vulnerability classified as critical was found in itsourcecode Onlin ...)
+	TODO: check
+CVE-2024-6014 (A vulnerability classified as critical has been found in itsourcecode  ...)
+	TODO: check
+CVE-2024-6013 (A vulnerability was found in itsourcecode Online Book Store 1.0. It ha ...)
+	TODO: check
+CVE-2024-6009 (A vulnerability has been found in itsourcecode Event Calendar 1.0 and  ...)
+	TODO: check
+CVE-2024-6008 (A vulnerability, which was classified as critical, was found in itsour ...)
+	TODO: check
+CVE-2024-6007 (A vulnerability classified as critical has been found in Netentsec NS- ...)
+	TODO: check
+CVE-2024-6006 (A vulnerability was found in ZKTeco ZKBio CVSecurity V5000 4.1.0. It h ...)
+	TODO: check
+CVE-2024-6005 (A vulnerability was found in ZKTeco ZKBio CVSecurity V5000 4.1.0. It h ...)
+	TODO: check
+CVE-2024-5858 (The AI Infographic Maker plugin for WordPress is vulnerable to unautho ...)
+	TODO: check
+CVE-2024-5611 (The Stratum \u2013 Elementor Widgets plugin for WordPress is vulnerabl ...)
+	TODO: check
+CVE-2024-4551 (The Video Gallery \u2013 YouTube Playlist, Channel Gallery by YotuWP p ...)
+	TODO: check
+CVE-2024-4258 (The Video Gallery \u2013 YouTube Playlist, Channel Gallery by YotuWP p ...)
+	TODO: check
+CVE-2024-4095 (The Collapse-O-Matic plugin for WordPress is vulnerable to Stored Cros ...)
+	TODO: check
+CVE-2024-3105 (The Woody code snippets \u2013 Insert Header Footer Code, AdSense Ads  ...)
+	TODO: check
+CVE-2024-31870 (IBM Db2 for i 7.2, 7.3, 7.4, and 7.5 supplies user defined table funct ...)
+	TODO: check
+CVE-2024-2695 (The Shariff Wrapper plugin for WordPress is vulnerable to Stored Cross ...)
+	TODO: check
+CVE-2024-27275 (IBM i 7.2, 7.3, 7.4, and 7.5 contains a local privilege escalation vul ...)
+	TODO: check
 CVE-2024-6003 (A vulnerability was found in Guangdong Baolun Electronics IP Network B ...)
 	NOT-FOR-US: Guangdong Baolun Electronics IP Network Broadcasting Service Platform
 CVE-2024-6000 (The FooEvents for WooCommerce plugin for WordPress is vulnerable to un ...)
@@ -1620,7 +1656,7 @@ CVE-2023-38533 (A vulnerability has been identified in TIA Administrator (All ve
 CVE-2023-33922 (Missing Authorization vulnerability in Elementor Elementor Website Bui ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2024-5702 (Memory corruption in the networking stack could have led to a potentia ...)
-	{DSA-5709-1 DLA-3825-1}
+	{DSA-5711-1 DSA-5709-1 DLA-3825-1}
 	- firefox-esr 115.12.0esr-1
 	- thunderbird 1:115.12.0-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-26/#CVE-2024-5702
@@ -1629,7 +1665,7 @@ CVE-2024-5701 (Memory safety bugs present in Firefox 126. Some of these bugs sho
 	- firefox 127.0-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-25/#CVE-2024-5701
 CVE-2024-5700 (Memory safety bugs present in Firefox 126, Firefox ESR 115.11, and Thu ...)
-	{DSA-5709-1 DLA-3825-1}
+	{DSA-5711-1 DSA-5709-1 DLA-3825-1}
 	- firefox 127.0-1
 	- firefox-esr 115.12.0esr-1
 	- thunderbird 1:115.12.0-1
@@ -1646,7 +1682,7 @@ CVE-2024-5697 (A website was able to detect when a user took a screenshot of a p
 	- firefox 127.0-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-25/#CVE-2024-5697
 CVE-2024-5696 (By manipulating the text in an `<input>` tag, an attacker could  ...)
-	{DSA-5709-1 DLA-3825-1}
+	{DSA-5711-1 DSA-5709-1 DLA-3825-1}
 	- firefox 127.0-1
 	- firefox-esr 115.12.0esr-1
 	- thunderbird 1:115.12.0-1
@@ -1660,7 +1696,7 @@ CVE-2024-5694 (An attacker could have caused a use-after-free in the JavaScript
 	- firefox 127.0-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-25/#CVE-2024-5694
 CVE-2024-5693 (Offscreen Canvas did not properly track cross-origin tainting, which c ...)
-	{DSA-5709-1 DLA-3825-1}
+	{DSA-5711-1 DSA-5709-1 DLA-3825-1}
 	- firefox 127.0-1
 	- firefox-esr 115.12.0esr-1
 	- thunderbird 1:115.12.0-1
@@ -1675,7 +1711,7 @@ CVE-2024-5692 (On Windows 10, when using the 'Save As' functionality, an attacke
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-26/#CVE-2024-5692
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-28/#CVE-2024-5692
 CVE-2024-5691 (By tricking the browser with a `X-Frame-Options` header, a sandboxed i ...)
-	{DSA-5709-1 DLA-3825-1}
+	{DSA-5711-1 DSA-5709-1 DLA-3825-1}
 	- firefox 127.0-1
 	- firefox-esr 115.12.0esr-1
 	- thunderbird 1:115.12.0-1
@@ -1683,7 +1719,7 @@ CVE-2024-5691 (By tricking the browser with a `X-Frame-Options` header, a sandbo
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-26/#CVE-2024-5691
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-28/#CVE-2024-5691
 CVE-2024-5690 (By monitoring the time certain operations take, an attacker could have ...)
-	{DSA-5709-1 DLA-3825-1}
+	{DSA-5711-1 DSA-5709-1 DLA-3825-1}
 	- firefox 127.0-1
 	- firefox-esr 115.12.0esr-1
 	- thunderbird 1:115.12.0-1
@@ -1694,7 +1730,7 @@ CVE-2024-5689 (In addition to detecting when a user was taking a screenshot (XXX
 	- firefox 127.0-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-25/#CVE-2024-5689
 CVE-2024-5688 (If a garbage collection was triggered at the right time, a use-after-f ...)
-	{DSA-5709-1 DLA-3825-1}
+	{DSA-5711-1 DSA-5709-1 DLA-3825-1}
 	- firefox 127.0-1
 	- firefox-esr 115.12.0esr-1
 	- thunderbird 1:115.12.0-1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3f3b5155c8f098a60e1cb429ca94d022af0ed739

-- 
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3f3b5155c8f098a60e1cb429ca94d022af0ed739
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240615/b33595ef/attachment.htm>

More information about the debian-security-tracker-commits mailing list