[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Aug 16 22:06:06 BST 2023



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a09e06bf by Salvatore Bonaccorso at 2023-08-16T23:05:36+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -14,55 +14,55 @@ CVE-2023-4385 (A NULL pointer dereference flaw was found in dbFree in fs/jfs/jfs
 	[buster] - linux 4.19.249-1
 	NOTE: https://git.kernel.org/linus/0d4837fdb796f99369cf7691d33de1b856bcaf1f (5.19-rc1)
 CVE-2023-4384 (A vulnerability has been found in MaximaTech Portal Executivo 21.9.1.1 ...)
-	TODO: check
+	NOT-FOR-US: MaximaTech Portal Executivo
 CVE-2023-4383 (A vulnerability, which was classified as critical, was found in MicroW ...)
-	TODO: check
+	NOT-FOR-US: MicroWorld eScan Anti-Virus
 CVE-2023-4382 (A vulnerability, which was classified as problematic, has been found i ...)
-	TODO: check
+	NOT-FOR-US: Hyip Rio
 CVE-2023-4381 (Unverified Password Change in GitHub repository instantsoft/icms2 prio ...)
-	TODO: check
+	NOT-FOR-US: icms2
 CVE-2023-4241 (lol-html can cause panics on certain HTML inputs. Anyone processing ar ...)
 	TODO: check
 CVE-2023-4204 (NPort IAW5000A-I/O Series firmware version v2.2 and prior is affected  ...)
-	TODO: check
+	NOT-FOR-US: NPort IAW5000A-I/O Series firmware
 CVE-2023-39975 (kdc/do_tgs_req.c in MIT Kerberos 5 (aka krb5) 1.21 before 1.21.2 has a ...)
 	TODO: check
 CVE-2023-39507 (Improper authorization in the custom URL scheme handler in "Rikunabi N ...)
-	TODO: check
+	NOT-FOR-US: "Rikunabi NEXT" App for Android
 CVE-2023-39250 (Dell Storage Integration Tools for VMware (DSITV) 06.01.00.016 contain ...)
-	TODO: check
+	NOT-FOR-US: Dell
 CVE-2023-39115 (install/aiz-uploader/upload in Campcodes Online Matrimonial Website Sy ...)
-	TODO: check
+	NOT-FOR-US: Campcodes Online Matrimonial Website System
 CVE-2023-38904 (A Cross Site Scripting (XSS) vulnerability in Netlify CMS v.2.10.192 a ...)
-	TODO: check
+	NOT-FOR-US: Netlify CMS
 CVE-2023-38737 (IBM WebSphere Application Server Liberty 22.0.0.13 through 23.0.0.7 is ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2023-33663 (In the module \u201cCustomization fields fee for your store\u201d (aic ...)
-	TODO: check
+	NOT-FOR-US: PrestaShop module
 CVE-2023-32495 (Dell PowerScale OneFS, 8.2.x-9.5.x, contains a exposure of sensitive i ...)
-	TODO: check
+	NOT-FOR-US: Dell
 CVE-2023-32494 (Dell PowerScale OneFS, 8.0.x-9.5.x, contains an improper handling of i ...)
-	TODO: check
+	NOT-FOR-US: Dell
 CVE-2023-32493 (Dell PowerScale OneFS, 9.5.0.x, contains a protection mechanism bypass ...)
-	TODO: check
+	NOT-FOR-US: Dell
 CVE-2023-32492 (Dell PowerScale OneFS 9.5.0.x contains an incorrect default permission ...)
-	TODO: check
+	NOT-FOR-US: Dell
 CVE-2023-32491 (Dell PowerScale OneFS 9.5.0.x, contains an insertion of sensitive info ...)
-	TODO: check
+	NOT-FOR-US: Dell
 CVE-2023-32490 (Dell PowerScale OneFS 8.2x -9.5x contains an improper privilege manage ...)
-	TODO: check
+	NOT-FOR-US: Dell
 CVE-2023-32489 (Dell PowerScale OneFS 8.2x -9.5x contains a privilege escalation vulne ...)
-	TODO: check
+	NOT-FOR-US: Dell
 CVE-2023-32488 (Dell PowerScale OneFS, 8.2.x-9.5.0.x, contains an information disclosu ...)
-	TODO: check
+	NOT-FOR-US: Dell
 CVE-2023-32487 (Dell PowerScale OneFS, 8.2.x - 9.5.0.x, contains an elevation of privi ...)
-	TODO: check
+	NOT-FOR-US: Dell
 CVE-2023-32486 (Dell PowerScale OneFS 9.5.x version contain a privilege escalation vul ...)
-	TODO: check
+	NOT-FOR-US: Dell
 CVE-2023-32453 (Dell BIOS contains an improper authentication vulnerability. A malicio ...)
-	TODO: check
+	NOT-FOR-US: Dell
 CVE-2023-2737 (Improper log permissions in SafeNet Authentication ServiceVersion 3.4. ...)
-	TODO: check
+	NOT-FOR-US: SafeNet Authentication ServiceVersion
 CVE-2023-4302
 	NOT-FOR-US: Jenkins plugin
 CVE-2023-4301



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a09e06bfb619e5cf0795f20f1b6e06d1db140f3d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a09e06bfb619e5cf0795f20f1b6e06d1db140f3d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230816/089fce9a/attachment-0001.htm>


More information about the debian-security-tracker-commits mailing list