[Git][security-tracker-team/security-tracker][master] Update status for CVE-2024-49504/grub2
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Mar 13 20:35:39 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
82c2c517 by Salvatore Bonaccorso at 2025-03-13T21:35:11+01:00
Update status for CVE-2024-49504/grub2
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -37071,7 +37071,8 @@ CVE-2024-49506 (Insecure creation of temporary files allows local users on syste
CVE-2024-49505 (A Improper Neutralization of Input During Web Page Generation ('Cross- ...)
NOT-FOR-US: openSUSE Tumbleweed MirrorCache
CVE-2024-49504 (grub2 allowed attackers with access to the grub shell to access files ...)
- - grub2 <unfixed>
+ - grub2 <not-affected> (SUSE specific grub2 patches)
+ NOTE: https://bugzilla.suse.com/show_bug.cgi?id=1229164
CVE-2024-49379 (Umbrel is a home server OS for self-hosting. The login functionality o ...)
NOT-FOR-US: Umbrel
CVE-2024-48989 (A vulnerability in the PROFINET stack implementation of the IndraDrive ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/82c2c517835bfe75bed9f1d220cc9f7f49ebbfd3
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/82c2c517835bfe75bed9f1d220cc9f7f49ebbfd3
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250313/577eed6e/attachment.htm>
More information about the debian-security-tracker-commits
mailing list