Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e1fea245 by security tracker role at 2024-01-21T20:12:13+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,9 @@
+CVE-2024-23732 (The JSON loader in Embedchain before 0.1.57 allows a ReDoS
(regular ex ...)
+ TODO: check
+CVE-2024-23731 (The OpenAPI loader in Embedchain before 0.1.57 allows
attackers to exe ...)
+ TODO: check
+CVE-2024-23730 (The OpenAPI and ChatGPT plugin loaders in LlamaHub (aka
llama-hub) bef ...)
+ TODO: check
CVE-2024-23726 (Ubee DDW365 XCNDDW365 and DDW366 XCNDXW3WB devices have
predictable de ...)
NOT-FOR-US: Ubee DDW365 XCNDDW365 and DDW366 XCNDXW3WB devices
CVE-2024-23725 (Ghost before 5.76.0 allows XSS via a post excerpt in
excerpt.js. An XS ...)
@@ -4474,7 +4480,7 @@ CVE-2023-34829 (Incorrect access control in TP-Link Tapo
before v3.1.315 allows
NOT-FOR-US: TP-Link
CVE-2023-7116 (A vulnerability, which was classified as critical, has been
found in W ...)
NOT-FOR-US: WeiYe-Jing datax-web
-CVE-2023-6531
+CVE-2023-6531 (A use-after-free flaw was found in the Linux Kernel due to a
race prob ...)
{DSA-5594-1 DSA-5593-1 DLA-3711-1}
- linux 6.6.8-1
[buster] - linux <not-affected> (Vulnerable code not present)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e1fea245285ab76b4e33ba40b33ba42dcf7be808
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e1fea245285ab76b4e33ba40b33ba42dcf7be808
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
