[Git][security-tracker-team/security-tracker][master] Process some NFUs

Sun, 29 Oct 2023 13:05:26 -0700 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
ebbcd9a5 by Salvatore Bonaccorso at 2023-10-29T21:04:49+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,9 +1,9 @@
 CVE-2023-5840 (Weak Password Recovery Mechanism for Forgotten Password in 
GitHub repo ...)
-       TODO: check
+       NOT-FOR-US: LinkStack
 CVE-2023-5839 (Privilege Chaining in GitHub repository hestiacp/hestiacp prior 
to 1.8 ...)
        NOT-FOR-US: Hestia Control Panel
 CVE-2023-5838 (Insufficient Session Expiration in GitHub repository 
linkstackorg/link ...)
-       TODO: check
+       NOT-FOR-US: LinkStack
 CVE-2023-5837 (A vulnerability classified as problematic was found in 
AlexanderLivano ...)
        NOT-FOR-US: AlexanderLivanov FotosCMS2
 CVE-2023-5836 (A vulnerability was found in SourceCodester Task Reminder 
System 1.0.  ...)
@@ -169595,15 +169595,15 @@ CVE-2021-33640 (After tar_close(), libtar.c 
releases the memory pointed to by po
 CVE-2021-33639 (REMAP cmd of SVM driver can be used to remap read only memory 
as read- ...)
        NOT-FOR-US: OpenEuler
 CVE-2021-33638 (When the isula cp command is used to copy files from a 
container to a  ...)
-       TODO: check
+       NOT-FOR-US: OpenEuler iSulad
 CVE-2021-33637 (When the isula export command is used to export a container to 
an imag ...)
-       TODO: check
+       NOT-FOR-US: OpenEuler iSulad
 CVE-2021-33636 (When the isula load command is used to load malicious images, 
attacker ...)
-       TODO: check
+       NOT-FOR-US: OpenEuler iSulad
 CVE-2021-33635 (When malicious images are pulled by isula pull, attackers can 
execute  ...)
-       TODO: check
+       NOT-FOR-US: OpenEuler iSulad
 CVE-2021-33634 (iSulad uses the lcr+lxc runtime (default) to run malicious 
images, whi ...)
-       TODO: check
+       NOT-FOR-US: OpenEuler lcr
 CVE-2021-33633
        RESERVED
 CVE-2021-33632



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ebbcd9a57e9f75d72ab1b84525c57bf787b7c803

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ebbcd9a57e9f75d72ab1b84525c57bf787b7c803
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to