[Git][security-tracker-team/security-tracker][master] Add new set of tsmuxer issues

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
bf9a3a22 by Salvatore Bonaccorso at 2024-11-15T22:01:15+01:00
Add new set of tsmuxer issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -284,7 +284,7 @@ CVE-2024-9356 (The Yotpo: Product & Photo Reviews for WooCommerce plugin for Wor
 CVE-2024-8961 (The Essential Addons for Elementor \u2013 Best Elementor Addon, Templa ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2024-52613 (A heap-based buffer under-read in tsMuxer version nightly-2024-05-12-0 ...)
-	TODO: check
+	- tsmuxer <itp> (bug #761820)
 CVE-2024-52308 (The GitHub CLI version 2.6.1 and earlier are vulnerable to remote code ...)
 	TODO: check
 CVE-2024-51687 (Cross-Site Request Forgery (CSRF) vulnerability in Platform.Ly Platfor ...)
@@ -302,11 +302,11 @@ CVE-2024-51156 (07FLYCMS V1.3.9 was discovered to contain a Cross-Site Request F
 CVE-2024-50968 (A business logic vulnerability exists in the Add to Cart function of i ...)
 	NOT-FOR-US: itsourcecode Agri-Trading Online Shopping System
 CVE-2024-49778 (A heap-based buffer overflow in tsMuxer version nightly-2024-05-12-02- ...)
-	TODO: check
+	- tsmuxer <itp> (bug #761820)
 CVE-2024-49777 (A heap-based buffer overflow in tsMuxer version nightly-2024-03-14-01- ...)
-	TODO: check
+	- tsmuxer <itp> (bug #761820)
 CVE-2024-49776 (A negative-size-param in tsMuxer version nightly-2024-04-05-01-53-02 a ...)
-	TODO: check
+	- tsmuxer <itp> (bug #761820)
 CVE-2024-48974 (The ventilator does not perform proper file integrity checks when adop ...)
 	NOT-FOR-US: Baxter
 CVE-2024-48973 (The debug port on the ventilator's serial interface is enabled by defa ...)
@@ -322,11 +322,11 @@ CVE-2024-48966 (The software tools used by service personnel to test & calibrate
 CVE-2024-42499 (Improper limitation of a pathname to a restricted directory ('Path Tra ...)
 	TODO: check
 CVE-2024-41217 (A heap-based buffer overflow in tsMuxer version nightly-2024-05-10-02- ...)
-	TODO: check
+	- tsmuxer <itp> (bug #761820)
 CVE-2024-41209 (A heap-based buffer overflow in tsMuxer version nightly-2024-03-14-01- ...)
-	TODO: check
+	- tsmuxer <itp> (bug #761820)
 CVE-2024-41206 (A stack-based buffer over-read in tsMuxer version nightly-2024-03-14-0 ...)
-	TODO: check
+	- tsmuxer <itp> (bug #761820)
 CVE-2024-40579 (Cross Site Scripting vulnerability in Virtuozzo Hybrid Server for WHMC ...)
 	NOT-FOR-US: Virtuozzo Hybrid Server for WHMCS Open Source
 CVE-2024-39707 (Insyde IHISI function 0x49 can restore factory defaults for certain UE ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bf9a3a227851b077143d8a0e026cd6d64c5f2d31

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bf9a3a227851b077143d8a0e026cd6d64c5f2d31
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241115/9834a593/attachment-0001.htm>