[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Aug 16 22:06:06 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a09e06bf by Salvatore Bonaccorso at 2023-08-16T23:05:36+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -14,55 +14,55 @@ CVE-2023-4385 (A NULL pointer dereference flaw was found in dbFree in fs/jfs/jfs
[buster] - linux 4.19.249-1
NOTE: https://git.kernel.org/linus/0d4837fdb796f99369cf7691d33de1b856bcaf1f (5.19-rc1)
CVE-2023-4384 (A vulnerability has been found in MaximaTech Portal Executivo 21.9.1.1 ...)
- TODO: check
+ NOT-FOR-US: MaximaTech Portal Executivo
CVE-2023-4383 (A vulnerability, which was classified as critical, was found in MicroW ...)
- TODO: check
+ NOT-FOR-US: MicroWorld eScan Anti-Virus
CVE-2023-4382 (A vulnerability, which was classified as problematic, has been found i ...)
- TODO: check
+ NOT-FOR-US: Hyip Rio
CVE-2023-4381 (Unverified Password Change in GitHub repository instantsoft/icms2 prio ...)
- TODO: check
+ NOT-FOR-US: icms2
CVE-2023-4241 (lol-html can cause panics on certain HTML inputs. Anyone processing ar ...)
TODO: check
CVE-2023-4204 (NPort IAW5000A-I/O Series firmware version v2.2 and prior is affected ...)
- TODO: check
+ NOT-FOR-US: NPort IAW5000A-I/O Series firmware
CVE-2023-39975 (kdc/do_tgs_req.c in MIT Kerberos 5 (aka krb5) 1.21 before 1.21.2 has a ...)
TODO: check
CVE-2023-39507 (Improper authorization in the custom URL scheme handler in "Rikunabi N ...)
- TODO: check
+ NOT-FOR-US: "Rikunabi NEXT" App for Android
CVE-2023-39250 (Dell Storage Integration Tools for VMware (DSITV) 06.01.00.016 contain ...)
- TODO: check
+ NOT-FOR-US: Dell
CVE-2023-39115 (install/aiz-uploader/upload in Campcodes Online Matrimonial Website Sy ...)
- TODO: check
+ NOT-FOR-US: Campcodes Online Matrimonial Website System
CVE-2023-38904 (A Cross Site Scripting (XSS) vulnerability in Netlify CMS v.2.10.192 a ...)
- TODO: check
+ NOT-FOR-US: Netlify CMS
CVE-2023-38737 (IBM WebSphere Application Server Liberty 22.0.0.13 through 23.0.0.7 is ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2023-33663 (In the module \u201cCustomization fields fee for your store\u201d (aic ...)
- TODO: check
+ NOT-FOR-US: PrestaShop module
CVE-2023-32495 (Dell PowerScale OneFS, 8.2.x-9.5.x, contains a exposure of sensitive i ...)
- TODO: check
+ NOT-FOR-US: Dell
CVE-2023-32494 (Dell PowerScale OneFS, 8.0.x-9.5.x, contains an improper handling of i ...)
- TODO: check
+ NOT-FOR-US: Dell
CVE-2023-32493 (Dell PowerScale OneFS, 9.5.0.x, contains a protection mechanism bypass ...)
- TODO: check
+ NOT-FOR-US: Dell
CVE-2023-32492 (Dell PowerScale OneFS 9.5.0.x contains an incorrect default permission ...)
- TODO: check
+ NOT-FOR-US: Dell
CVE-2023-32491 (Dell PowerScale OneFS 9.5.0.x, contains an insertion of sensitive info ...)
- TODO: check
+ NOT-FOR-US: Dell
CVE-2023-32490 (Dell PowerScale OneFS 8.2x -9.5x contains an improper privilege manage ...)
- TODO: check
+ NOT-FOR-US: Dell
CVE-2023-32489 (Dell PowerScale OneFS 8.2x -9.5x contains a privilege escalation vulne ...)
- TODO: check
+ NOT-FOR-US: Dell
CVE-2023-32488 (Dell PowerScale OneFS, 8.2.x-9.5.0.x, contains an information disclosu ...)
- TODO: check
+ NOT-FOR-US: Dell
CVE-2023-32487 (Dell PowerScale OneFS, 8.2.x - 9.5.0.x, contains an elevation of privi ...)
- TODO: check
+ NOT-FOR-US: Dell
CVE-2023-32486 (Dell PowerScale OneFS 9.5.x version contain a privilege escalation vul ...)
- TODO: check
+ NOT-FOR-US: Dell
CVE-2023-32453 (Dell BIOS contains an improper authentication vulnerability. A malicio ...)
- TODO: check
+ NOT-FOR-US: Dell
CVE-2023-2737 (Improper log permissions in SafeNet Authentication ServiceVersion 3.4. ...)
- TODO: check
+ NOT-FOR-US: SafeNet Authentication ServiceVersion
CVE-2023-4302
NOT-FOR-US: Jenkins plugin
CVE-2023-4301
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a09e06bfb619e5cf0795f20f1b6e06d1db140f3d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a09e06bfb619e5cf0795f20f1b6e06d1db140f3d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230816/089fce9a/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list