Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
761c5455 by security tracker role at 2024-01-27T08:12:12+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,47 @@
+CVE-2024-23506 (Exposure of Sensitive Information to an Unauthorized Actor
vulnerabili ...)
+ TODO: check
+CVE-2024-22862 (Integer overflow vulnerability in FFmpeg before n6.1, allows
remote at ...)
+ TODO: check
+CVE-2024-22861 (Integer overflow vulnerability in FFmpeg before n6.1, allows
attackers ...)
+ TODO: check
+CVE-2024-22860 (Integer overflow vulnerability in FFmpeg before n6.1, allows
remote at ...)
+ TODO: check
+CVE-2024-22283 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2024-22147 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
+ TODO: check
+CVE-2024-0958 (A vulnerability was found in CodeAstro Stock Management System
1.0 and ...)
+ TODO: check
+CVE-2024-0948 (A vulnerability, which was classified as problematic, has been
found i ...)
+ TODO: check
+CVE-2024-0946 (A vulnerability classified as critical was found in 60IndexPage
up to ...)
+ TODO: check
+CVE-2024-0945 (A vulnerability classified as critical has been found in
60IndexPage u ...)
+ TODO: check
+CVE-2024-0824 (The Exclusive Addons for Elementor plugin for WordPress is
vulnerable ...)
+ TODO: check
+CVE-2024-0697 (The Backuply \u2013 Backup, Restore, Migrate and Clone plugin
for Word ...)
+ TODO: check
+CVE-2024-0667 (The Form Maker by 10Web \u2013 Mobile-Friendly Drag & Drop
Contact For ...)
+ TODO: check
+CVE-2024-0664 (The Meks Smart Social Widget plugin for WordPress is vulnerable
to Sto ...)
+ TODO: check
+CVE-2024-0618 (The Contact Form Plugin \u2013 Fastest Contact Form Builder
Plugin for ...)
+ TODO: check
+CVE-2023-6497 (The WordPress Simple Shopping Cart plugin for WordPress is
vulnerable ...)
+ TODO: check
+CVE-2023-6482 (Use of encryption key derived from static information in
Synaptics Fin ...)
+ TODO: check
+CVE-2023-6470
+ REJECTED
+CVE-2023-52389 (UTF32Encoding.cpp in POCO has a Poco::UTF32Encoding integer
overflow a ...)
+ TODO: check
+CVE-2023-52187 (Exposure of Sensitive Information to an Unauthorized Actor
vulnerabili ...)
+ TODO: check
+CVE-2023-48202 (Cross-Site Scripting (XSS) vulnerability in Sunlight CMS 8.0.1
allows ...)
+ TODO: check
+CVE-2023-48201 (Cross Site Scripting (XSS) vulnerability in Sunlight CMS
v.8.0.1, allo ...)
+ TODO: check
CVE-2024-0444 [GStreamer-SA-2024-0001: AV1 codec parser potential buffer
overflow during tile list parsing]
- gst-plugins-bad1.0 1.22.9-1
- gst-plugins-bad0.10 <removed>
@@ -70835,6 +70879,7 @@ CVE-2023-22086 (Vulnerability in the Oracle WebLogic
Server product of Oracle Fu
CVE-2023-22085 (Vulnerability in the Hospitality OPERA 5 Property Services
product of ...)
NOT-FOR-US: Oracle
CVE-2023-22084 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
+ {DLA-3722-1}
- mariadb 1:10.11.6-1
[bookworm] - mariadb <no-dsa> (Minor issue, will be fixed via point
update)
- mariadb-10.5 <removed>
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/761c54551860a18917f64e3236d7750a70a00272
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/761c54551860a18917f64e3236d7750a70a00272
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
