[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Apr 11 21:32:20 BST 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
35665d27 by Salvatore Bonaccorso at 2023-04-11T22:31:55+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -65,23 +65,23 @@ CVE-2023-1990
 CVE-2023-1989
 	RESERVED
 CVE-2023-1988 (A vulnerability was found in SourceCodester Online Computer and Laptop ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Online Computer and Laptop Store
 CVE-2023-1987 (A vulnerability has been found in SourceCodester Online Computer and L ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Online Computer and Laptop Store
 CVE-2023-1986 (A vulnerability, which was classified as critical, was found in Source ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Online Computer and Laptop Store
 CVE-2023-1985 (A vulnerability, which was classified as critical, has been found in S ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Online Computer and Laptop Store
 CVE-2023-1984 (A vulnerability classified as critical was found in SourceCodester Com ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Complaint Management System
 CVE-2023-1983 (A vulnerability was found in SourceCodester Sales Tracker Management S ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Sales Tracker Management System
 CVE-2023-1982
 	RESERVED
 CVE-2023-1981
 	RESERVED
 CVE-2023-1980 (Two factor authentication bypass on login in Devolutions Remote Deskto ...)
-	TODO: check
+	NOT-FOR-US: Devolutions
 CVE-2023-1979
 	RESERVED
 CVE-2023-1978
@@ -89,11 +89,11 @@ CVE-2023-1978
 CVE-2023-1977
 	RESERVED
 CVE-2023-1976 (Password Aging with Long Expiration in GitHub repository answerdev/ans ...)
-	TODO: check
+	NOT-FOR-US: answer
 CVE-2023-1975 (Insertion of Sensitive Information Into Sent Data in GitHub repository ...)
-	TODO: check
+	NOT-FOR-US: answer
 CVE-2023-1974 (Exposure of Sensitive Information Through Metadata in GitHub repositor ...)
-	TODO: check
+	NOT-FOR-US: answer
 CVE-2023-30469
 	RESERVED
 CVE-2023-30468
@@ -105,7 +105,7 @@ CVE-2023-30467
 CVE-2023-30466
 	RESERVED
 CVE-2023-30465 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
-	TODO: check
+	NOT-FOR-US: Apache InLong
 CVE-2023-1972
 	RESERVED
 CVE-2023-1971 (** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was classified  ...)
@@ -2203,7 +2203,7 @@ CVE-2023-1941 (A vulnerability, which was classified as critical, has been found
 CVE-2023-1940 (A vulnerability classified as critical was found in SourceCodester Sim ...)
 	NOT-FOR-US: SourceCodester Simple and Beautiful Shopping Cart System
 CVE-2023-1939 (No access control for the OTP key on OTP entries in Devolutions Remote ...)
-	TODO: check
+	NOT-FOR-US: Devolutions
 CVE-2023-1938
 	RESERVED
 CVE-2023-1937 (A vulnerability, which was classified as problematic, was found in zhe ...)
@@ -3586,9 +3586,9 @@ CVE-2023-29056
 CVE-2023-29055
 	RESERVED
 CVE-2023-29054 (A vulnerability has been identified in SCALANCE X200-4P IRT (All versi ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2023-29053 (A vulnerability has been identified in JT Open (All versions < V11. ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2023-29052
 	RESERVED
 CVE-2023-29051
@@ -4538,7 +4538,7 @@ CVE-2023-28768
 CVE-2023-28767
 	RESERVED
 CVE-2023-28766 (A vulnerability has been identified in SIPROTEC 5 6MD85 (CP200) (All v ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2023-25180
 	RESERVED
 CVE-2023-24593
@@ -5452,7 +5452,7 @@ CVE-2023-28491
 CVE-2023-28490
 	RESERVED
 CVE-2023-28489 (A vulnerability has been identified in CP-8031 MASTER MODULE (All vers ...)
-	TODO: check
+	NOT-FOR-US: Siemens
 CVE-2023-1478 (The Hummingbird WordPress plugin before 3.4.2 does not validate the ge ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2023-1477
@@ -5855,7 +5855,7 @@ CVE-2023-27304
 CVE-2023-26595
 	RESERVED
 CVE-2023-26593 (CENTUM series provided by Yokogawa Electric Corporation are vulnerable ...)
-	TODO: check
+	NOT-FOR-US: Yokogawa
 CVE-2023-25955 (National land numerical information data conversion tool all versions  ...)
 	TODO: check
 CVE-2023-25954
@@ -5945,7 +5945,7 @@ CVE-2023-28371 (In Stellarium through 1.2, attackers can write to files that are
 	NOTE: https://github.com/Stellarium/stellarium/commit/787a894897b7872ae96e6f5804a182210edd5c78
 	NOTE: https://github.com/Stellarium/stellarium/commit/eba61df3b38605befcb43687a4c0a159dbc0c5cb
 CVE-2023-28368 (TP-Link L2 switch T2600G-28SQ firmware versions prior to 'T2600G-28SQ( ...)
-	TODO: check
+	NOT-FOR-US: TP-Link
 CVE-2023-28366
 	RESERVED
 CVE-2023-28365



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/35665d2736ceee8685b066100d24577db2a3940e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/35665d2736ceee8685b066100d24577db2a3940e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230411/f84bc53f/attachment.htm>

More information about the debian-security-tracker-commits mailing list