Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
be893c27 by security tracker role at 2024-06-01T08:12:15+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,47 @@
+CVE-2024-5501 (The Supreme Modules Lite \u2013 Divi Theme, Extra Theme and
Divi Build ...)
+ TODO: check
+CVE-2024-5138 (The snapctl component within snapd allows a confined snap to
interact ...)
+ TODO: check
+CVE-2024-4958 (The User Registration \u2013 Custom Registration Form, Login
Form, and ...)
+ TODO: check
+CVE-2024-4711 (The WordPress Infinite Scroll \u2013 Ajax Load More plugin for
WordPre ...)
+ TODO: check
+CVE-2024-4342 (The Royal Elementor Addons and Templates plugin for WordPress
is vulne ...)
+ TODO: check
+CVE-2024-4087 (The Royal Elementor Addons and Templates plugin for WordPress
is vulne ...)
+ TODO: check
+CVE-2024-3565 (The Content Blocks (Custom Post Widget) plugin for WordPress is
vulner ...)
+ TODO: check
+CVE-2024-3564 (The Content Blocks (Custom Post Widget) plugin for WordPress is
vulner ...)
+ TODO: check
+CVE-2024-34009 (Insufficient checks whether ReCAPTCHA was enabled made it
possible to ...)
+ TODO: check
+CVE-2024-34008 (Actions in the admin management of analytics models did not
include th ...)
+ TODO: check
+CVE-2024-34007 (The logout option within MFA did not include the necessary
token to av ...)
+ TODO: check
+CVE-2024-34006 (The site log report required additional encoding of event
descriptions ...)
+ TODO: check
+CVE-2024-34005 (In a shared hosting environment that has been misconfigured to
allow a ...)
+ TODO: check
+CVE-2024-34004 (In a shared hosting environment that has been misconfigured to
allow a ...)
+ TODO: check
+CVE-2024-34003 (In a shared hosting environment that has been misconfigured to
allow a ...)
+ TODO: check
+CVE-2024-34002 (In a shared hosting environment that has been misconfigured to
allow a ...)
+ TODO: check
+CVE-2024-34001 (Actions in the admin preset tool did not include the necessary
token t ...)
+ TODO: check
+CVE-2024-2933 (The Page Builder Gutenberg Blocks \u2013 CoBlocks plugin for
WordPress ...)
+ TODO: check
+CVE-2024-2506 (The Popup Builder \u2013 Create highly converting, mobile
friendly mar ...)
+ TODO: check
+CVE-2024-2295 (The Contact Form Manager plugin for WordPress is vulnerable to
Stored ...)
+ TODO: check
+CVE-2024-1324 (The QQWorld Auto Save Images plugin for WordPress is vulnerable
to una ...)
+ TODO: check
+CVE-2023-6382 (The Master Slider \u2013 Responsive Touch Slider plugin for
WordPress ...)
+ TODO: check
CVE-2024-5565 (The Vanna library uses a prompt function to present the user
with visu ...)
TODO: check
CVE-2024-5564 (A vulnerability was found in libndp. This flaw allows a local
maliciou ...)
@@ -2161,7 +2205,7 @@ CVE-2024-4563 (The Progress MOVEit Automation
configuration export function prio
CVE-2024-4454 (WithSecure Elements Endpoint Protection Link Following Local
Privilege ...)
NOT-FOR-US: WithSecure Elements Endpoint Protection
CVE-2024-4453 (GStreamer EXIF Metadata Parsing Integer Overflow Remote Code
Execution ...)
- {DLA-3824-1}
+ {DSA-5702-1 DLA-3824-1}
- gst-plugins-base1.0 1.24.3-1
- gst-plugins-base0.10 <removed>
NOTE: https://gstreamer.freedesktop.org/security/sa-2024-0002.html
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/be893c27ba2e9550ccaeefc3bffe73426062e220
--
This project does not include diff previews in email notifications.
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/be893c27ba2e9550ccaeefc3bffe73426062e220
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
