[Git][security-tracker-team/security-tracker][master] Process some NFUs

Sat, 01 Jun 2024 08:08:42 -0700 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
39dc8cf7 by Salvatore Bonaccorso at 2024-06-01T17:07:38+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -86,9 +86,9 @@ CVE-2024-36108 (casgate is an Open Source Identity and Access 
Management system.
 CVE-2024-35196 (Sentry is a developer-first error tracking and performance 
monitoring  ...)
        TODO: check
 CVE-2024-35142 (IBM Security Verify Access Docker 10.0.0 through 10.0.6 could 
allow a  ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2024-35140 (IBM Security Verify Access Docker 10.0.0 through 10.0.6 could 
allow a  ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2024-34000 (ID numbers displayed in the lesson overview report required 
additional ...)
        TODO: check
 CVE-2024-33999 (The referrer URL used by MFA required additional sanitizing, 
rather th ...)
@@ -100,11 +100,11 @@ CVE-2024-33997 (Additional sanitizing was required when 
opening the equation edi
 CVE-2024-33996 (Incorrect validation of allowed event types in a calendar web 
service  ...)
        TODO: check
 CVE-2024-31908 (IBM Planning Analytics Local 2.0 and 2.1 is vulnerable to 
stored cross ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2024-31907 (IBM Planning Analytics Local 2.0 and 2.1 is vulnerable to 
cross-site s ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2024-31889 (IBM Planning Analytics Local 2.0 and 2.1 is vulnerable to 
cross-site s ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2024-31030 (An issue in coap_msg.c in Keith Cullen's FreeCoAP v.0.7 allows 
remote  ...)
        TODO: check
 CVE-2024-29848 (An unrestricted file upload vulnerability in web component of 
Ivanti A ...)
@@ -136,7 +136,7 @@ CVE-2024-23692 (Rejetto HTTP File Server, up to and 
including version 2.3m, is v
 CVE-2024-23316 (HTTP request desynchronization in Ping Identity PingAccess, 
all versio ...)
        TODO: check
 CVE-2024-22338 (IBM Security Verify Access OIDC Provider 22.09 through 23.03 
could dis ...)
-       TODO: check
+       NOT-FOR-US: IBM
 CVE-2024-22060 (An unrestricted file upload vulnerability in web component of 
Ivanti N ...)
        TODO: check
 CVE-2024-22059 (A SQL injection vulnerability in web component of Ivanti 
Neurons for I ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/39dc8cf7b0997df3496a69db01fdab8032894600

-- 
This project does not include diff previews in email notifications.
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/39dc8cf7b0997df3496a69db01fdab8032894600
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to