[Git][security-tracker-team/security-tracker][master] new php-laravel-framework issue

Mon, 18 Nov 2024 07:40:55 -0800 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
f1b128c0 by Moritz Muehlenhoff at 2024-11-18T16:40:25+01:00
new php-laravel-framework issue

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1537,17 +1537,18 @@ CVE-2024-7571 (Incorrect permissions in Ivanti Secure 
Access Client before 22.7R
 CVE-2024-7516 (A vulnerability in Brocade Fabric OS versions before 9.2.2 
could allow ...)
        NOT-FOR-US: Brocade Fabric OS
 CVE-2024-52301 (Laravel is a web application framework. When the 
register_argc_argv ph ...)
-       TODO: check
+       - php-laravel-framework <unfixed>
+       NOTE: 
https://github.com/laravel/framework/security/advisories/GHSA-gv7v-rgg6-548h
 CVE-2024-52297 (Tolgee is an open-source localization platform. Tolgee 3.81.1 
included ...)
-       TODO: check
+       NOT-FOR-US: Tolgee
 CVE-2024-52296 (libosdp is an implementation of IEC 60839-11-5 OSDP (Open 
Supervised D ...)
        NOT-FOR-US: libosdp
 CVE-2024-52010 (Zoraxy is a general purpose HTTP reverse proxy and forwarding 
tool. A  ...)
        NOT-FOR-US: Zoraxy
 CVE-2024-51750 (Element is a Matrix web client built using the Matrix React 
SDK. A mal ...)
-       TODO: check
+       - element-web <itp> (bug #866502)
 CVE-2024-51749 (Element is a Matrix web client built using the Matrix React 
SDK. Versi ...)
-       TODO: check
+       - element-web <itp> (bug #866502)
 CVE-2024-51722 (A local privilege escalation vulnerability in the SecuSUITE 
Server (Sy ...)
        NOT-FOR-US: SecuSUITE
 CVE-2024-51721 (A code injection vulnerability in the SecuSUITE Server Web 
Administrat ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f1b128c023c9e85be0f4be7301010a35c418a70a

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f1b128c023c9e85be0f4be7301010a35c418a70a
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to