[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Nov 4 08:12:46 GMT 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
121c05a4 by security tracker role at 2024-11-04T08:12:39+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,85 @@
+CVE-2024-48342
+	REJECTED
+CVE-2024-20124 (In vdec, there is a possible out of bounds read due to improper struct ...)
+	TODO: check
+CVE-2024-20123 (In vdec, there is a possible out of bounds read due to improper struct ...)
+	TODO: check
+CVE-2024-20122 (In vdec, there is a possible out of bounds read due to improper struct ...)
+	TODO: check
+CVE-2024-20121 (In KeyInstall, there is a possible out of bounds write due to a missin ...)
+	TODO: check
+CVE-2024-20120 (In KeyInstall, there is a possible out of bounds write due to a missin ...)
+	TODO: check
+CVE-2024-20119 (In mms, there is a possible out of bounds write due to an incorrect bo ...)
+	TODO: check
+CVE-2024-20118 (In mms, there is a possible out of bounds write due to an incorrect bo ...)
+	TODO: check
+CVE-2024-20117 (In vdec, there is a possible out of bounds read due to improper struct ...)
+	TODO: check
+CVE-2024-20115 (In ccu, there is a possible out of bounds write due to a missing bound ...)
+	TODO: check
+CVE-2024-20114 (In ccu, there is a possible out of bounds write due to a missing bound ...)
+	TODO: check
+CVE-2024-20113 (In ccu, there is a possible out of bounds write due to a missing bound ...)
+	TODO: check
+CVE-2024-20112 (In isp, there is a possible out of bounds read due to a missing bounds ...)
+	TODO: check
+CVE-2024-20111 (In ccu, there is a possible out of bounds write due to a missing bound ...)
+	TODO: check
+CVE-2024-20110 (In ccu, there is a possible out of bounds write due to a missing bound ...)
+	TODO: check
+CVE-2024-20109 (In ccu, there is a possible out of bounds write due to a missing bound ...)
+	TODO: check
+CVE-2024-20108 (In atci, there is a possible out of bounds write due to a missing boun ...)
+	TODO: check
+CVE-2024-20107 (In da, there is a possible out of bounds read due to a missing bounds  ...)
+	TODO: check
+CVE-2024-20106 (In m4u, there is a possible out of bounds write due to a missing bound ...)
+	TODO: check
+CVE-2024-20104 (In da, there is a possible out of bounds write due to a missing bounds ...)
+	TODO: check
+CVE-2024-10761 (A vulnerability was found in Umbraco CMS 12.3.6. It has been classifie ...)
+	TODO: check
+CVE-2024-10760 (A vulnerability was found in code-projects University Event Management ...)
+	TODO: check
+CVE-2024-10759 (A vulnerability has been found in itsourcecode Farm Management System  ...)
+	TODO: check
+CVE-2024-10758 (A vulnerability, which was classified as critical, was found in code-p ...)
+	TODO: check
+CVE-2024-10757 (A vulnerability, which was classified as problematic, has been found i ...)
+	TODO: check
+CVE-2024-10756 (A vulnerability classified as problematic was found in PHPGurukul Onli ...)
+	TODO: check
+CVE-2024-10755 (A vulnerability classified as problematic has been found in PHPGurukul ...)
+	TODO: check
+CVE-2024-10754 (A vulnerability was found in PHPGurukul Online Shopping Portal 2.0. It ...)
+	TODO: check
+CVE-2024-10753 (A vulnerability was found in PHPGurukul Online Shopping Portal 2.0. It ...)
+	TODO: check
+CVE-2024-10752 (A vulnerability was found in Codezips Pet Shop Management System 1.0.  ...)
+	TODO: check
+CVE-2024-10751 (A vulnerability was found in Codezips ISP Management System 1.0 and cl ...)
+	TODO: check
+CVE-2024-10750 (A vulnerability has been found in Tenda i22 1.0.0.3(4687) and classifi ...)
+	TODO: check
+CVE-2024-10749 (A vulnerability, which was classified as critical, was found in ThinkA ...)
+	TODO: check
+CVE-2024-10748 (A vulnerability, which was classified as problematic, has been found i ...)
+	TODO: check
+CVE-2024-10747 (A vulnerability classified as problematic was found in PHPGurukul Onli ...)
+	TODO: check
+CVE-2024-10746 (A vulnerability classified as problematic has been found in PHPGurukul ...)
+	TODO: check
+CVE-2024-10745 (A vulnerability was found in PHPGurukul Online Shopping Portal 2.0. It ...)
+	TODO: check
+CVE-2024-10744 (A vulnerability was found in PHPGurukul Online Shopping Portal 2.0. It ...)
+	TODO: check
+CVE-2024-10743 (A vulnerability was found in PHPGurukul Online Shopping Portal 2.0. It ...)
+	TODO: check
+CVE-2024-10742 (A vulnerability was found in code-projects Wazifa System 1.0 and class ...)
+	TODO: check
+CVE-2024-10741 (A vulnerability has been found in code-projects E-Health Care System 1 ...)
+	TODO: check
 CVE-2024-10740 (A vulnerability, which was classified as critical, was found in code-p ...)
 	NOT-FOR-US: code-projects E-Health Care System
 CVE-2024-10739 (A vulnerability, which was classified as critical, has been found in c ...)
@@ -656,13 +738,13 @@ CVE-2024-9430 (The Get Quote For Woocommerce \u2013 Request A Quote For Woocomme
 	NOT-FOR-US: WordPress plugin
 CVE-2024-9165 (The Gift Cards (Gift Vouchers and Packages) (WooCommerce Supported) pl ...)
 	NOT-FOR-US: WordPress plugin
-CVE-2024-51427 (An issue in Ethereum v.1.12.2 allows remote attacker to execute arbitr ...)
+CVE-2024-51427 (An issue in the PepeGxng smart contract (which can be run on the Ether ...)
 	NOT-FOR-US: Ethereum
-CVE-2024-51426 (Insecure Permissions vulnerability in Ethereum v.1.12.2 allows a remot ...)
+CVE-2024-51426 (An issue in the PepeGxng smart contract (which can be run on the Ether ...)
 	NOT-FOR-US: Ethereum
-CVE-2024-51425 (Insecure Permissions vulnerability in Ethereum v.1.12.2 allows a remot ...)
+CVE-2024-51425 (An issue in the WaterToken smart contract (which can be run on the Eth ...)
 	NOT-FOR-US: Ethereum
-CVE-2024-51424 (An issue in Ethereum v.1.12.2 allows remote attacker to execute arbitr ...)
+CVE-2024-51424 (An issue in the PepeGxng smart contract (which can be run on the Ether ...)
 	NOT-FOR-US: Ethereum
 CVE-2024-51419 (Cross Site Scripting vulnerability in Shenzhen Interconnection Harbor  ...)
 	NOT-FOR-US: Ofweek Online Exhibition
@@ -1001,9 +1083,11 @@ CVE-2024-46951 [PS interpreter - check the type of the Pattern Implementation]
 	NOTE: https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=f49812186baa7d1362880673408a6fbe8719b4f8
 	NOTE: https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=ada21374f0c90cc3acf7ce0e96302394560c7aee (ghostpdl-10.04.0)
 CVE-2024-10488 (Use after free in WebRTC in Google Chrome prior to 130.0.6723.92 allow ...)
+	{DSA-5802-1}
 	- chromium 130.0.6723.91-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2024-10487 (Out of bounds write in Dawn in Google Chrome prior to 130.0.6723.92 al ...)
+	{DSA-5802-1}
 	- chromium 130.0.6723.91-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2024-9990 (The Crypto plugin for WordPress is vulnerable to Cross-Site Request Fo ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/121c05a45a51af79d6a72110ae487a99f2e634c1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/121c05a45a51af79d6a72110ae487a99f2e634c1
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241104/9885ab0f/attachment.htm>

More information about the debian-security-tracker-commits mailing list