Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits: 9fa9faca by Moritz Muehlenhoff at 2024-09-03T17:15:53+02:00 bookworm triage - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -24,24 +24,31 @@ CVE-2024-37136 (Dell Path to PowerProtect, versions 1.1, 1.2, contains an Exposu NOT-FOR-US: Dell CVE-2024-45620 - opensc <unfixed> + [bookworm] - opensc <no-dsa> (Minor issue) NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2309289 CVE-2024-45619 - opensc <unfixed> + [bookworm] - opensc <no-dsa> (Minor issue) NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2309288 CVE-2024-45618 - opensc <unfixed> + [bookworm] - opensc <no-dsa> (Minor issue) NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2309287 CVE-2024-45617 - opensc <unfixed> + [bookworm] - opensc <no-dsa> (Minor issue) NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2309286 CVE-2024-45616 - opensc <unfixed> + [bookworm] - opensc <no-dsa> (Minor issue) NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2309290 CVE-2024-45615 - opensc <unfixed> + [bookworm] - opensc <no-dsa> (Minor issue) NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2309285 CVE-2024-45310 - runc <unfixed> + [bookworm] - runc <no-dsa> (Minor issue) NOTE: https://www.openwall.com/lists/oss-security/2024/09/03/1 NOTE: https://github.com/opencontainers/runc/security/advisories/GHSA-jfvp-7x6p-h2pv CVE-2024-8004 (A stored Cross-site Scripting (XSS) vulnerability affecting ENOVIA Col ...) @@ -437,6 +444,7 @@ CVE-2024-8285 (A flaw was found in Kroxylicious. When establishing the connectio NOT-FOR-US: kroxylicious CVE-2024-42934 - openipmi <unfixed> + [bookworm] - openipmi <no-dsa> (Minor issue) NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2308375 CVE-2024-8304 (A vulnerability has been found in jpress up to 5.1.1 and classified as ...) NOT-FOR-US: jpress @@ -1155,6 +1163,7 @@ CVE-2024-43966 (Improper Neutralization of Special Elements used in an SQL Comma NOT-FOR-US: WordPress plugin CVE-2024-43806 (Rustix is a set of safe Rust bindings to POSIX-ish APIs. When using `r ...) - rust-rustix 0.38.21-1 + [bookworm] - rust-rustix <no-dsa> (Minor issue) NOTE: https://github.com/bytecodealliance/rustix/security/advisories/GHSA-c827-hfw6-qwvm CVE-2024-43802 (Vim is an improved version of the unix vi text editor. When flushing t ...) - vim 2:9.1.0698-1 @@ -1572,6 +1581,7 @@ CVE-2024-42364 (Homepage is a highly customizable homepage with Docker and servi NOT-FOR-US: gethomepage/homepage CVE-2024-42040 (Buffer Overflow vulnerability in the net/bootp.c in DENEX U-Boot from ...) - u-boot <unfixed> + [bookworm] - u-boot <no-dsa> (Minor issue) NOTE: https://www.schutzwerk.com/advisories/SCHUTZWERK-SA-2024-004.txt CVE-2024-41878 (Adobe Experience Manager versions 6.5.19 and earlier are affected by a ...) NOT-FOR-US: Adobe @@ -20950,6 +20960,7 @@ CVE-2024-37569 (An issue was discovered on Mitel 6869i through 4.5.0.41 and 5.x NOT-FOR-US: Mitel CVE-2024-37568 (lepture Authlib before 1.3.1 has algorithm confusion with asymmetric p ...) - python-authlib 1.3.1-1 + [bookworm] - python-authlib <no-dsa> (Minor issue) NOTE: https://github.com/lepture/authlib/issues/654 NOTE: https://github.com/lepture/authlib/commit/3bea812acefebc9ee108aa24557be3ba8971daf1 (v1.3.1) CVE-2024-35748 (Missing Authorization vulnerability in OPMC WooCommerce Dropshipping.T ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9fa9facaec71df343fc0d154683386f4df814fcb -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9fa9facaec71df343fc0d154683386f4df814fcb You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits