[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Apr 14 22:05:29 BST 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d0874a41 by Salvatore Bonaccorso at 2023-04-14T23:05:08+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -482,13 +482,13 @@ CVE-2023-2040 (A vulnerability classified as critical has been found in novel-pl
 CVE-2023-2039 (A vulnerability was found in novel-plus 3.6.2. It has been rated as cr ...)
 	TODO: check
 CVE-2023-2038 (A vulnerability was found in Campcodes Video Sharing Website 1.0. It h ...)
-	TODO: check
+	NOT-FOR-US: Campcodes Video Sharing Website
 CVE-2023-2037 (A vulnerability was found in Campcodes Video Sharing Website 1.0. It h ...)
-	TODO: check
+	NOT-FOR-US: Campcodes Video Sharing Website
 CVE-2023-2036 (A vulnerability was found in Campcodes Video Sharing Website 1.0 and c ...)
-	TODO: check
+	NOT-FOR-US: Campcodes Video Sharing Website
 CVE-2023-2035 (A vulnerability has been found in Campcodes Video Sharing Website 1.0  ...)
-	TODO: check
+	NOT-FOR-US: Campcodes Video Sharing Website
 CVE-2023-2034 (Unrestricted Upload of File with Dangerous Type in GitHub repository f ...)
 	- froxlor <itp> (bug #581792)
 CVE-2023-2033 (Type confusion in V8 in Google Chrome prior to 112.0.5615.121 allowed  ...)
@@ -531,7 +531,7 @@ CVE-2023-2016
 CVE-2023-2015
 	RESERVED
 CVE-2023-2014 (Cross-site Scripting (XSS) - Generic in GitHub repository microweber/m ...)
-	TODO: check
+	NOT-FOR-US: microweber
 CVE-2023-2013
 	RESERVED
 CVE-2023-2012
@@ -933,7 +933,7 @@ CVE-2023-30461
 CVE-2023-30460
 	RESERVED
 CVE-2023-30459 (SmartPTT SCADA 1.1.0.0 allows remote code execution (when the attacker ...)
-	TODO: check
+	NOT-FOR-US: SmartPTT SCADA
 CVE-2023-30458
 	RESERVED
 CVE-2023-30457
@@ -2168,13 +2168,13 @@ CVE-2023-29852
 CVE-2023-29851
 	RESERVED
 CVE-2023-29850 (SENAYAN Library Management System (SLiMS) Bulian v9.5.2 does not strip ...)
-	TODO: check
+	NOT-FOR-US: SENAYAN Library Management System (SLiMS) Bulia
 CVE-2023-29849
 	RESERVED
 CVE-2023-29848
 	RESERVED
 CVE-2023-29847 (AeroCMS v0.0.1 was discovered to contain multiple stored cross-site sc ...)
-	TODO: check
+	NOT-FOR-US: AeroCMS
 CVE-2023-29846
 	RESERVED
 CVE-2023-29845
@@ -2258,9 +2258,9 @@ CVE-2023-29807
 CVE-2023-29806
 	RESERVED
 CVE-2023-29805 (WFS-SR03 v1.0.3 was discovered to contain a command injection vulnerab ...)
-	TODO: check
+	NOT-FOR-US: WFS-SR03
 CVE-2023-29804 (WFS-SR03 v1.0.3 was discovered to contain a command injection vulnerab ...)
-	TODO: check
+	NOT-FOR-US: WFS-SR03
 CVE-2023-29803 (TOTOLINK X18 V9.1.0cu.2024_B20220329 was discovered to contain a comma ...)
 	NOT-FOR-US: TOTOLINK
 CVE-2023-29802 (TOTOLINK X18 V9.1.0cu.2024_B20220329 was discovered to contain a comma ...)
@@ -2614,19 +2614,19 @@ CVE-2023-29629
 CVE-2023-29628
 	RESERVED
 CVE-2023-29627 (Online Pizza Ordering v1.0 was discovered to contain an arbitrary file ...)
-	TODO: check
+	NOT-FOR-US: Online Pizza Ordering
 CVE-2023-29626 (Yoga Class Registration System 1.0 was discovered to contain a SQL inj ...)
-	TODO: check
+	NOT-FOR-US: Yoga Class Registration System
 CVE-2023-29625 (Employee Performance Evaluation System v1.0 was discovered to contain  ...)
-	TODO: check
+	NOT-FOR-US: Employee Performance Evaluation System
 CVE-2023-29624
 	RESERVED
 CVE-2023-29623 (Purchase Order Management v1.0 was discovered to contain a reflected c ...)
-	TODO: check
+	NOT-FOR-US: Purchase Order Management
 CVE-2023-29622 (Purchase Order Management v1.0 was discovered to contain a SQL injecti ...)
-	TODO: check
+	NOT-FOR-US: Purchase Order Management
 CVE-2023-29621 (Purchase Order Management v1.0 was discovered to contain an arbitrary  ...)
-	TODO: check
+	NOT-FOR-US: Purchase Order Management
 CVE-2023-29620
 	RESERVED
 CVE-2023-29619
@@ -2726,7 +2726,7 @@ CVE-2023-29575
 CVE-2023-29574 (Bento4 v1.6.0-639 was discovered to contain an out-of-memory bug in th ...)
 	NOT-FOR-US: Bento4
 CVE-2023-29573 (Bento4 v1.6.0-639 was discovered to contain an out-of-memory bug in th ...)
-	TODO: check
+	NOT-FOR-US: Bento4
 CVE-2023-29572
 	RESERVED
 CVE-2023-29571 (Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d0874a411a8c8d1ab78f5a8ee45402cc9e19fd8a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d0874a411a8c8d1ab78f5a8ee45402cc9e19fd8a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230414/3a2aaa6c/attachment.htm>

More information about the debian-security-tracker-commits mailing list