[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso (@carnil) Wed, 17 Apr 2024 13:23:57 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
00498fc0 by Salvatore Bonaccorso at 2024-04-17T22:23:12+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3,17 +3,17 @@ CVE-2024-3914 (Use after free in V8 in Google Chrome prior to 
124.0.6367.60 allo
        [bullseye] - chromium <end-of-life> (see #1061268)
        [buster] - chromium <end-of-life> (see DSA 5046)
 CVE-2024-3910 (A vulnerability, which was classified as critical, has been 
found in T ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-3909 (A vulnerability classified as critical was found in Tenda AC500 
2.0.1. ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-3908 (A vulnerability classified as critical has been found in Tenda 
AC500 2 ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-3907 (A vulnerability was found in Tenda AC500 2.0.1.9(1307). It has 
been ra ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-3906 (A vulnerability was found in Tenda AC500 2.0.1.9(1307). It has 
been de ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-3905 (A vulnerability was found in Tenda AC500 2.0.1.9(1307). It has 
been cl ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-3900 (Out-of-bounds array write in Xpdf 4.05 and earlier, triggered 
by long  ...)
        TODO: check
 CVE-2024-3825 (Versions of the BlazeMeter Jenkins plugin prior to 4.22 contain 
a flaw ...)
@@ -21,133 +21,133 @@ CVE-2024-3825 (Versions of the BlazeMeter Jenkins plugin 
prior to 4.22 contain a
 CVE-2024-3817 (HashiCorp\u2019s go-getter library is vulnerable to argument 
injection ...)
        TODO: check
 CVE-2024-3333 (The Essential Addons for Elementor plugin for WordPress is 
vulnerable  ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-3323 (Cross Site Scripting in   UI Request/Response Validation   in 
TIBCO Ja ...)
-       TODO: check
+       NOT-FOR-US: TIBCO JasperReports Server
 CVE-2024-32550 (Cross-Site Request Forgery (CSRF) vulnerability in BMI Adult & 
Kid Cal ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-32549 (Cross-Site Request Forgery (CSRF) vulnerability in Microkid 
Related Po ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-32548 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-32547 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-32546 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-32545 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-32544 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-32543 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-32542 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-32541 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-32540 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-32539 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-32538 (Cross-Site Request Forgery (CSRF) vulnerability in Joshua 
Eldridge Eas ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-32536 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-32535 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-32534 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-32533 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-32531 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-32530 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-32529 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-32528 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-32527 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-32526 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-32510 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-32508 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-32506 (Exposure of Sensitive Information to an Unauthorized Actor 
vulnerabili ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-32505 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-32463 (phlex is an open source framework for building object-oriented 
views i ...)
-       TODO: check
+       NOT-FOR-US: phlex framework
 CVE-2024-32457 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-32456 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-32320 (Tenda AC500 V2.0.1.9(1307) firmware has a stack overflow 
vulnerability ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-32318 (Tenda AC500 V2.0.1.9(1307) firmware has a stack overflow 
vulnerability ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-32317 (Tenda AC10 v4.0 V16.03.10.13 and V16.03.10.20 firmware has a 
stack ove ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-32316 (Tenda AC500 V2.0.1.9(1307) firmware has a stack overflow 
vulnerability ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-32315 (Tenda FH1202 v1.2.0.14(408) firmware has a stack overflow 
vulnerabilit ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-32314 (Tenda AC500 V2.0.1.9(1307) firmware contains a command 
injection vulne ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-32313 (Tenda FH1205 V2.0.0.7(775) firmware has a stack overflow 
vulnerability ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-32312 (Tenda F1203 V2.0.1.6 firmware has a stack overflow 
vulnerability locat ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-32311 (Tenda FH1203 v2.0.1.6 firmware has a stack overflow 
vulnerability via  ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-32310 (Tenda F1203 V2.0.1.6 firmware has a stack overflow 
vulnerability locat ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-32307 (Tenda FH1205 V2.0.0.7(775) firmware has a stack overflow 
vulnerability ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-32306 (Tenda AC10U v1.0 Firmware v15.03.06.49 has a stack overflow 
vulnerabil ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-32305 (Tenda A18 v15.03.05.05 firmware has a stack overflow 
vulnerability loc ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-32303 (Tenda AC15 v15.03.20_multi, v15.03.05.19, and v15.03.05.18 
firmware ha ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-32302 (Tenda FH1202 v1.2.0.14(408) firmware has a stack overflow 
vulnerabilit ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-32301 (Tenda AC7V1.0 v15.03.06.44 firmware has a stack overflow 
vulnerability ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-32299 (Tenda FH1203 v2.0.1.6 firmware has a stack overflow 
vulnerability via  ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-32293 (Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow 
vulnerabi ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-32292 (Tenda W30E v1.0 V1.0.1.25(633) firmware contains a command 
injection v ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-32291 (Tenda W30E v1.0 firmware v1.0.1.25(633) has a stack overflow 
vulnerabi ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-32290 (Tenda W30E v1.0 v1.0.1.25(633) firmware has a stack overflow 
vulnerabi ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-32288 (Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow 
vulnerabi ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-32287 (Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow 
vulnerabi ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-32286 (Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow 
vulnerabi ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-32285 (Tenda W30E v1.0 V1.0.1.25(633) firmware has a stack overflow 
vulnerabi ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-32283 (Tenda FH1203 V2.0.1.6 firmware has a command injection 
vulnerablility  ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-32282 (Tenda FH1202 v1.2.0.14(408) firmware contains a command 
injection vuln ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-32281 (Tenda AC7V1.0 v15.03.06.44 firmware contains a command 
injection vulne ...)
-       TODO: check
+       NOT-FOR-US: Tenda
 CVE-2024-32163 (CMSeasy 7.7.7.9 is vulnerable to code execution.)
-       TODO: check
+       NOT-FOR-US: CMSeasy
 CVE-2024-32162 (CMSeasy 7.7.7.9 is vulnerable to Arbitrary file deletion.)
-       TODO: check
+       NOT-FOR-US: CMSeasy
 CVE-2024-32161 (jizhiCMS 2.5 suffers from a File upload vulnerability.)
-       TODO: check
+       NOT-FOR-US: jizhiCMS
 CVE-2024-32130 (Improper Neutralization of Input During Web Page Generation 
('Cross-si ...)
-       TODO: check
+       NOT-FOR-US: WordPress plugin
 CVE-2024-31585 (FFmpeg version n5.1 to n6.1 was discovered to contain an 
Off-by-one Er ...)
        TODO: check
 CVE-2024-31583 (Pytorch before version v2.2.0 was discovered to contain a 
use-after-fr ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/00498fc0885fad0c1a86a2f39a4c673e50093ece

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/00498fc0885fad0c1a86a2f39a4c673e50093ece
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Process NFUs

Reply via email to