[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) Thu, 26 Oct 2023 01:44:18 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
711f0d71 by Salvatore Bonaccorso at 2023-10-26T10:41:03+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,7 +1,7 @@
 CVE-2023-5139 (Potential buffer overflow vulnerability at the following 
location in t ...)
-       TODO: check
+       NOT-FOR-US: Zephyr RTOS (unrelated to src:zephyr)
 CVE-2023-46754 (The admin panel for Obl.ong before 1.1.2 allows authorization 
bypass b ...)
-       TODO: check
+       NOT-FOR-US: admin panel for Obl.ong
 CVE-2023-46753 (An issue was discovered in FRRouting FRR through 9.0.1. A 
crash can oc ...)
        TODO: check
 CVE-2023-46752 (An issue was discovered in FRRouting FRR through 9.0.1. It 
mishandles  ...)
@@ -11,9 +11,9 @@ CVE-2023-46668 (If Elastic Endpoint (v7.9.0 - v8.10.3) is 
configured to use a no
 CVE-2023-46667 (An issue was discovered in Fleet Server >= v8.10.0 and < 
v8.10.3 where ...)
        TODO: check
 CVE-2023-46584 (SQL Injection vulnerability in PHPGurukul Nipah virus (NiV) " 
Testing  ...)
-       TODO: check
+       NOT-FOR-US: PHPGurukul
 CVE-2023-46583 (Cross-Site Scripting (XSS) vulnerability in PHPGurukul Nipah 
virus (Ni ...)
-       TODO: check
+       NOT-FOR-US: PHPGurukul
 CVE-2023-46345 (Catdoc v0.95 was discovered to contain a NULL pointer 
dereference via  ...)
        TODO: check
 CVE-2023-46233 (crypto-js is a JavaScript library of crypto standards. Prior 
to versio ...)
@@ -27,11 +27,11 @@ CVE-2023-46134 (D-Tale is the combination of a Flask 
back-end and a React front-
 CVE-2023-46133 (CryptoES is a cryptography algorithms library compatible with 
ES6 and  ...)
        TODO: check
 CVE-2023-45137 (XWiki Platform is a generic wiki platform offering runtime 
services fo ...)
-       TODO: check
+       NOT-FOR-US: XWiki
 CVE-2023-43906 (Xolo CMS v0.11 was discovered to contain a reflected 
cross-site script ...)
-       TODO: check
+       NOT-FOR-US: Xolo CMS
 CVE-2023-43905 (Incorrect access control in writercms v1.1.0 allows attackers 
to direc ...)
-       TODO: check
+       NOT-FOR-US: writercms
 CVE-2023-38849 (An issue in tire-sales Line v.13.6.1 allows a remote attacker 
to obtai ...)
        TODO: check
 CVE-2023-38848 (An issue in rmc R Beauty CLINIC Line v.13.6.1 allows a remote 
attacker ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/711f0d7108fbe4f9b92fdec7add440dff525b823

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/711f0d7108fbe4f9b92fdec7add440dff525b823
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Process some NFUs

Reply via email to