[Git][security-tracker-team/security-tracker][master] Add CVE-2024-47850/cups-filters
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Oct 5 09:09:23 BST 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
5ce4eded by Salvatore Bonaccorso at 2024-10-05T10:08:55+02:00
Add CVE-2024-47850/cups-filters
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -171,7 +171,11 @@ CVE-2024-47855 (util/JSONTokener.java in JSON-lib before 3.1.0 mishandles an unb
CVE-2024-47854 (A vulnerability was discovered in Veritas Data Insight before 7.1. It ...)
NOT-FOR-US: Veritas Data Insight
CVE-2024-47850 (CUPS cups-browsed before 2.5b1 will send an HTTP POST request to an ar ...)
- TODO: check
+ - cups-filters <unfixed>
+ [bookworm] - cups-filters <ignored> (Mitigated with fixes around CVE-2024-47076, CVE-2024-47175 and CVE-2024-47176)
+ NOTE: https://www.akamai.com/blog/security-research/october-cups-ddos-threat
+ NOTE: https://www.openwall.com/lists/oss-security/2024/10/04/1
+ NOTE: https://github.com/advisories/GHSA-phc2-g348-384g
CVE-2024-46658 (Syrotech SY-GOPON-8OLT-L3 v1.6.0_240629 was discovered to contain an a ...)
NOT-FOR-US: Syrotech
CVE-2024-45367 (The web server for ONS-S8 - Spectra Aggregation Switch includes an inc ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5ce4eded17c628e96fbfdcb4192e315759acdb18
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5ce4eded17c628e96fbfdcb4192e315759acdb18
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241005/5ac75074/attachment.htm>
More information about the debian-security-tracker-commits
mailing list