[Git][security-tracker-team/security-tracker][master] Add CVE-2024-54819/i-librarian, itp'ed

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Jan 7 21:08:15 GMT 2025



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f532403e by Salvatore Bonaccorso at 2025-01-07T22:07:46+01:00
Add CVE-2024-54819/i-librarian, itp'ed

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -338,7 +338,7 @@ CVE-2024-55218 (IceWarp Server 10.2.1 is vulnerable to Cross Site Scripting (XSS
 CVE-2024-55008 (JATOS 3.9.4 contains a denial-of-service (DoS) vulnerability in the au ...)
 	NOT-FOR-US: JATOS
 CVE-2024-54819 (I, Librarian before and including 5.11.1 is vulnerable to Server-Side  ...)
-	TODO: check
+	- i-librarian <itp> (bug #649291)
 CVE-2024-54007 (Multiple command injection vulnerabilities exist in the web interface  ...)
 	NOT-FOR-US: HPE
 CVE-2024-54006 (Multiple command injection vulnerabilities exist in the web interface  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f532403eea248f136a6be08c0c878f5f194b0e89

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f532403eea248f136a6be08c0c878f5f194b0e89
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250107/21e8f133/attachment-0001.htm>


More information about the debian-security-tracker-commits mailing list