[Git][security-tracker-team/security-tracker][master] Add two CVEs for Elasticsearch
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Apr 9 08:16:06 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
cde6eaf3 by Salvatore Bonaccorso at 2025-04-09T09:14:02+02:00
Add two CVEs for Elasticsearch
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -443,9 +443,9 @@ CVE-2024-54025 (An improper neutralization of special elements used in an OS com
CVE-2024-54024 (An improper neutralization of special elements used in an OS command ( ...)
NOT-FOR-US: Fortinet
CVE-2024-52981 (An issue was discovered in Elasticsearch, where a large recursion usin ...)
- TODO: check
+ - elasticsearch <removed>
CVE-2024-52980 (A flaw was discovered in Elasticsearch, where a large recursion using ...)
- TODO: check
+ - elasticsearch <removed>
CVE-2024-52974 (An issue has been identified where a specially crafted request sent to ...)
TODO: check
CVE-2024-52962 (AnImproper Output Neutralization for Logs vulnerability [CWE-117] in F ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cde6eaf308a6d7260e3a5557c52ea8e8abf0eaa6
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cde6eaf308a6d7260e3a5557c52ea8e8abf0eaa6
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250409/f9893796/attachment.htm>
More information about the debian-security-tracker-commits
mailing list