[Git][security-tracker-team/security-tracker][master] two fishy mariadb CVE assignments

Moritz Muehlenhoff (@jmm) jmm at debian.org
Fri Oct 18 16:13:44 BST 2024 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
12d88a1c by Moritz Mühlenhoff at 2024-10-18T17:13:15+02:00
two fishy mariadb CVE assignments

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -64,7 +64,7 @@ CVE-2024-30875 (Cross Site Scripting vulnerability in JavaScript Library jquery-
 	- jqueryui <unfixed>
 	NOTE: https://github.com/Ant1sec-ops/CVE-2024-30875
 CVE-2024-27766 (An issue in MYSQL MariaDB v.11.1 allows a remote attacker to execute a ...)
-	TODO: check
+	NOTE: Dubious mysql/mariadb issue, reached out to upstream
 CVE-2024-10119 (The wireless router WRTM326 from SECOM does not properly validate a sp ...)
 	NOT-FOR-US: SECOM
 CVE-2024-10118 (SECOM WRTR-304GN-304TW-UPSC does not properly filter user input in the ...)
@@ -96,7 +96,7 @@ CVE-2023-6055 (A vulnerability has been identified in Bitdefender Total Security
 CVE-2023-49567 (A vulnerability has been identified in the Bitdefender Total Security  ...)
 	NOT-FOR-US: Bitdefender
 CVE-2023-39593 (Insecure permissions in the sys_exec function of Oracle MYSQL MariaDB  ...)
-	TODO: check
+	NOTE: Dubious mysql/mariadb issue, reached out to upstream
 CVE-2024-9898 (The Parallax Image plugin for WordPress is vulnerable to Stored Cross- ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2024-9414 (In LAquis SCADA version 4.7.1.511, a cross-site scripting vulnerabilit ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/12d88a1c208ed984b0b1485f7b4ed5747f942291

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/12d88a1c208ed984b0b1485f7b4ed5747f942291
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241018/ffa292e3/attachment.htm>

More information about the debian-security-tracker-commits mailing list