[Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2024-46544/libapache-mod-jk: add fixing commit
Emilio Pozuelo Monfort (@pochu)
pochu at debian.org
Tue Oct 8 10:47:52 BST 2024
Emilio Pozuelo Monfort pushed to branch master at Debian Security Tracker / security-tracker
Commits:
044f651d by Emilio Pozuelo Monfort at 2024-10-08T11:45:27+02:00
CVE-2024-46544/libapache-mod-jk: add fixing commit
- - - - -
ea49c6fd by Emilio Pozuelo Monfort at 2024-10-08T11:47:27+02:00
lts: add libapache-mod-jk
- - - - -
2 changed files:
- data/CVE/list
- data/dla-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -2796,6 +2796,7 @@ CVE-2024-46639 (A cross-site scripting (XSS) vulnerability in HelpDeskZ v2.0.2 a
CVE-2024-46544 (Incorrect Default Permissions vulnerability in Apache Tomcat Connector ...)
- libapache-mod-jk <unfixed> (bug #1082713)
NOTE: https://www.openwall.com/lists/oss-security/2024/09/23/1
+ NOTE: Fixed by: https://github.com/apache/tomcat-connectors/commit/d55706e92b65018c2e4c7ab14014a996b0174966
CVE-2024-46241 (PHPGurukul Dairy Farm Shop Management System v1.1 is vulnerable to Cro ...)
NOT-FOR-US: PHPGurukul Dairy Farm Shop Management System
CVE-2024-45348 (Xiaomi Router AX9000 has a post-authorization command injection vulner ...)
=====================================
data/dla-needed.txt
=====================================
@@ -115,6 +115,9 @@ intel-mediasdk
knot-resolver
NOTE: 20240924: Added by Front-Desk (lamby)
--
+libapache-mod-jk
+ NOTE: 20241008: Added by Front-Desk (pochu)
+--
libreoffice (rouca)
NOTE: 20240920: Added by Front-Desk (apo)
NOTE: 20240920: Bastien took care of previous releases.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/498c3411d573895b743ce2ceeb5aaf12c8c0cd8e...ea49c6fd4fdbaaad631654d74a4969c015a6b6d5
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/498c3411d573895b743ce2ceeb5aaf12c8c0cd8e...ea49c6fd4fdbaaad631654d74a4969c015a6b6d5
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241008/e966d430/attachment.htm>
More information about the debian-security-tracker-commits
mailing list