Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 96edacfb by Salvatore Bonaccorso at 2024-09-02T22:26:34+02:00 Process some NFUs - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -1,19 +1,19 @@ CVE-2024-8004 (A stored Cross-site Scripting (XSS) vulnerability affecting ENOVIA Col ...) - TODO: check + NOT-FOR-US: 3DEXPERIENCE CVE-2024-7939 (A stored Cross-site Scripting (XSS) vulnerability affecting 3DSwym in ...) - TODO: check + NOT-FOR-US: 3DEXPERIENCE CVE-2024-7938 (A stored Cross-site Scripting (XSS) vulnerability affecting 3DDashboar ...) - TODO: check + NOT-FOR-US: 3DEXPERIENCE CVE-2024-7932 (A stored Cross-site Scripting (XSS) vulnerability affecting 3DDashboar ...) - TODO: check + NOT-FOR-US: 3DEXPERIENCE CVE-2024-6921 (Cleartext Storage of Sensitive Information vulnerability in NAC Teleco ...) - TODO: check + NOT-FOR-US: NAC Telecommunication Systems Inc. NACPremium CVE-2024-6920 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...) - TODO: check + NOT-FOR-US: NAC Telecommunication Systems Inc. NACPremium CVE-2024-6919 (Improper Neutralization of Special Elements used in an SQL Command ('S ...) - TODO: check + NOT-FOR-US: NAC Telecommunication Systems Inc. NACPremium CVE-2024-45622 (ASIS (aka Aplikasi Sistem Sekolah using CodeIgniter 3) 3.0.0 through 3 ...) - TODO: check + NOT-FOR-US: ASIS (aka Aplikasi Sistem Sekolah using CodeIgniter 3) CVE-2024-45621 (The Electron desktop application of Rocket.Chat through 6.3.4 allows s ...) TODO: check CVE-2024-45388 (Hoverfly is a lightweight service virtualization/ API simulation / API ...) @@ -33,61 +33,61 @@ CVE-2024-45305 (gix-path is a crate of the gitoxide project dealing with git pat CVE-2024-43801 (Jellyfin is an open source self hosted media server. The Jellyfin user ...) TODO: check CVE-2024-43797 (audiobookshelf is a self-hosted audiobook and podcast server. A non-ad ...) - TODO: check + NOT-FOR-US: Audiobookshelf CVE-2024-43792 (Halo is an open source website building tool. A security vulnerability ...) - TODO: check + NOT-FOR-US: Halo CVE-2024-42471 (actions/artifact is the GitHub ToolKit for developing GitHub Actions. ...) TODO: check CVE-2024-38858 (Improper neutralization of input in Checkmk before version 2.3.0p14 al ...) TODO: check CVE-2024-38402 (Memory corruption while processing IOCTL call for getting group info.) - TODO: check + NOT-FOR-US: Qualcomm CVE-2024-38401 (Memory corruption while processing concurrent IOCTL calls.) - TODO: check + NOT-FOR-US: Qualcomm CVE-2024-33060 (Memory corruption when two threads try to map and unmap a single node ...) - TODO: check + NOT-FOR-US: Qualcomm CVE-2024-33057 (Transient DOS while parsing the multi-link element Control field when ...) - TODO: check + NOT-FOR-US: Qualcomm CVE-2024-33054 (Memory corruption during the handshake between the Primary Virtual Mac ...) - TODO: check + NOT-FOR-US: Qualcomm CVE-2024-33052 (Memory corruption when user provides data for FM HCI command control o ...) - TODO: check + NOT-FOR-US: Qualcomm CVE-2024-33051 (Transient DOS while processing TIM IE from beacon frame as there is no ...) - TODO: check + NOT-FOR-US: Qualcomm CVE-2024-33050 (Transient DOS while parsing MBSSID during new IE generation in beacon/ ...) - TODO: check + NOT-FOR-US: Qualcomm CVE-2024-33048 (Transient DOS while parsing the received TID-to-link mapping element o ...) - TODO: check + NOT-FOR-US: Qualcomm CVE-2024-33047 (Memory corruption when the captureRead QDCM command is invoked from us ...) - TODO: check + NOT-FOR-US: Qualcomm CVE-2024-33045 (Memory corruption when BTFM client sends new messages over Slimbus to ...) - TODO: check + NOT-FOR-US: Qualcomm CVE-2024-33043 (Transient DOS while handling PS event when Program Service name length ...) - TODO: check + NOT-FOR-US: Qualcomm CVE-2024-33042 (Memory corruption when Alternative Frequency offset value is set to 25 ...) - TODO: check + NOT-FOR-US: Qualcomm CVE-2024-33038 (Memory corruption while passing untrusted/corrupted pointers from DSP ...) - TODO: check + NOT-FOR-US: Qualcomm CVE-2024-33035 (Memory corruption while calculating total metadata size when a very hi ...) - TODO: check + NOT-FOR-US: Qualcomm CVE-2024-33016 (memory corruption when an invalid firehose patch command is invoked.) - TODO: check + NOT-FOR-US: Qualcomm CVE-2024-28100 (eLabFTW is an open source electronic lab notebook for research labs. B ...) - TODO: check + NOT-FOR-US: eLabFTW CVE-2024-23365 (Memory corruption while releasing shared resources in MinkSocket liste ...) - TODO: check + NOT-FOR-US: Qualcomm CVE-2024-23364 (Transient DOS when processing the non-transmitted BSSID profile sub-el ...) - TODO: check + NOT-FOR-US: Qualcomm CVE-2024-23362 (Cryptographic issue while parsing RSA keys in COBR format.) - TODO: check + NOT-FOR-US: Qualcomm CVE-2024-23359 (Information disclosure while decoding Tracking Area Update Accept or A ...) - TODO: check + NOT-FOR-US: Qualcomm CVE-2024-23358 (Transient DOS when registration accept OTA is received with incorrect ...) - TODO: check + NOT-FOR-US: Qualcomm CVE-2024-1621 (The registration process of uniFLOW Online (NT-ware product) apps, pri ...) - TODO: check + NOT-FOR-US: uniFLOW Online (NT-ware product) apps CVE-2023-7279 (A vulnerability has been found in Secure Systems Engineering Connaisse ...) - TODO: check + NOT-FOR-US: Secure Systems Engineering Connaisseur CVE-2020-36830 (A vulnerability was found in nescalante urlregex up to 0.5.0 and class ...) TODO: check CVE-2024-44947 (In the Linux kernel, the following vulnerability has been resolved: f ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/96edacfb1f5ff613d9eae0067a8fb7331ad136f6 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/96edacfb1f5ff613d9eae0067a8fb7331ad136f6 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits