[Git][security-tracker-team/security-tracker][master] Add CVE-2024-44866/musescore
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Mar 28 20:03:58 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
fbb43b0d by Salvatore Bonaccorso at 2025-03-28T21:02:11+01:00
Add CVE-2024-44866/musescore
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3865,7 +3865,11 @@ CVE-2024-48015 (Dell SmartFabric OS10 Software, version(s) 10.5.4.x, 10.5.5.x, 1
CVE-2024-48013 (Dell SmartFabric OS10 Software, version(s) 10.5.4.x, 10.5.5.x, 10.5.6. ...)
NOT-FOR-US: Dell / EMC
CVE-2024-44866 (A buffer overflow in the GuitarPro1::read function of MuseScore Studio ...)
- TODO: check
+ - musescore3 <unfixed>
+ - musescore2 <unfixed>
+ - musescore <removed>
+ NOTE: https://github.com/moonadon9/CVE_2024
+ NOTE: Fixed by: https://github.com/musescore/MuseScore/commit/0630461b734201db24139b0dc1657371fce41fb9 (v4.4.0)
CVE-2024-44276 (This issue was addressed by using HTTPS when sending information over ...)
NOT-FOR-US: Apple
CVE-2024-12992 (Improper Neutralization of Special Elements used in a Command vulnerab ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fbb43b0d390a3cb96deaa819445a09b20f551d62
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fbb43b0d390a3cb96deaa819445a09b20f551d62
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250328/f1328c8b/attachment.htm>
More information about the debian-security-tracker-commits
mailing list