(mynewt-site) branch master updated: Add new public CVEs

Tue, 26 Nov 2024 05:02:31 -0800 

This is an automated email from the ASF dual-hosted git repository.

janc pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/mynewt-site.git


The following commit(s) were added to refs/heads/master by this push:
     new f6a4a0a468 Add new public CVEs
f6a4a0a468 is described below

commit f6a4a0a4682d9992e5e4e77ab029d72d70e7c2dc
Author: Szymon Janc <[email protected]>
AuthorDate: Tue Nov 26 13:46:10 2024 +0100

    Add new public CVEs
---
 docs/cve.md | 10 +++++++---
 1 file changed, 7 insertions(+), 3 deletions(-)

diff --git a/docs/cve.md b/docs/cve.md
index a9b4a30702..c3d353d124 100644
--- a/docs/cve.md
+++ b/docs/cve.md
@@ -3,6 +3,10 @@
 This page contains a summary of Common Vulnerabilities and Exposures (CVE) 
discovered and fixed 
 in Apache Mynewt.
 
-| CVE-ID                                                                       
               | Description                          | Releases Affected    | 
Release Fixed |
-|---------------------------------------------------------------------------------------------|--------------------------------------|----------------------|---------------|
-| <a 
href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-24746";>CVE-2024-24746
 </a> | Loop with Unreachable Exit Condition | NimBLE through 1.6.0 | NimBLE 
1.7.0  |
+| CVE-ID                                                                       
 | Description                          | Releases Affected    | Release Fixed |
+|-------------------------------------------------------------------------------|--------------------------------------|----------------------|---------------|
+| <a href="https://www.cve.org/CVERecord?id=CVE-2024-24746";>CVE-2024-24746 
</a> | Loop with Unreachable Exit Condition | NimBLE through 1.6.0 | NimBLE 
1.7.0  |
+| <a href="https://www.cve.org/CVERecord?id=CVE-2024-47248";>CVE-2024-47248 
</a> | Buffer overflow in NimBLE MESH Bluetooth stack | NimBLE through 1.7.0 | 
NimBLE 1.8.0  |
+| <a href="https://www.cve.org/CVERecord?id=CVE-2024-47249";>CVE-2024-47249 
</a> | Lack of input sanitization leading to out-of-bound reads in multiple 
advertisement handler | NimBLE through 1.7.0 | NimBLE 1.8.0  |
+| <a href="https://www.cve.org/CVERecord?id=CVE-2024-47250";>CVE-2024-47250 
</a> | Lack of input validation in HCI advertising report could lead to 
potential out-of-bound access | NimBLE through 1.7.0 | NimBLE 1.8.0  |
+| <a href="https://www.cve.org/CVERecord?id=CVE-2024-51569";>CVE-2024-51569 
</a> | Lack of input sanitization leading to out-of-bound reads in Number of 
Completed Packets HCI event handler | NimBLE through 1.7.0 | NimBLE 1.8.0  |

Reply via email to