[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Aug 19 11:30:34 BST 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e2ab2e96 by Salvatore Bonaccorso at 2023-08-19T12:30:01+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,21 +1,21 @@
 CVE-2023-4433 (Cross-site Scripting (XSS) - Stored in GitHub repository cockpit-hq/co ...)
-	TODO: check
+	NOT-FOR-US: Cockpit Content Platform (different from src:cockpit)
 CVE-2023-4432 (Cross-site Scripting (XSS) - Reflected in GitHub repository cockpit-hq ...)
-	TODO: check
+	NOT-FOR-US: Cockpit Content Platform (different from src:cockpit)
 CVE-2023-40175 (Puma is a Ruby/Rack web server built for parallelism. Prior to version ...)
 	TODO: check
 CVE-2023-40174 (Social media skeleton is an uncompleted/framework social media project ...)
-	TODO: check
+	NOT-FOR-US: social-media-skeleton
 CVE-2023-40173 (Social media skeleton is an uncompleted/framework social media project ...)
-	TODO: check
+	NOT-FOR-US: social-media-skeleton
 CVE-2023-40172 (Social media skeleton is an uncompleted/framework social media project ...)
-	TODO: check
+	NOT-FOR-US: social-media-skeleton
 CVE-2023-40037 (Apache NiFi 1.21.0 through 1.23.0 support JDBC and JNDI JMS access in  ...)
-	TODO: check
+	NOT-FOR-US: Apache NiFi
 CVE-2023-38839 (SQL injection vulnerability in Kidus Minimati v.1.0.0 allows a remote  ...)
-	TODO: check
+	NOT-FOR-US: Kidus Minimati
 CVE-2023-2971 (Improper path handling in Typora before 1.7.0-dev on Windows and Linux ...)
-	TODO: check
+	NOT-FOR-US: Typora
 CVE-2023-4422 (Cross-site Scripting (XSS) - Stored in GitHub repository cockpit-hq/co ...)
 	NOT-FOR-US: Cockpit Content Platform (different from src:cockpit)
 CVE-2023-4415 (A vulnerability was found in Ruijie RG-EW1200G 07161417 r483. It has b ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e2ab2e96484133351b8e6b1e7000e1e05926a77b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e2ab2e96484133351b8e6b1e7000e1e05926a77b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230819/9e13aad7/attachment.htm>

More information about the debian-security-tracker-commits mailing list