[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Aug 20 13:19:22 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
974df3c8 by Salvatore Bonaccorso at 2023-08-20T14:18:55+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,11 +1,11 @@
CVE-2023-4435 (Improper Input Validation in GitHub repository hamza417/inure prior to ...)
- TODO: check
+ NOT-FOR-US: hamza417/inure
CVE-2023-4434 (Missing Authorization in GitHub repository hamza417/inure prior to bui ...)
- TODO: check
+ NOT-FOR-US: hamza417/inure
CVE-2023-40711 (Veilid before 0.1.9 does not check the size of uncompressed data durin ...)
- TODO: check
+ NOT-FOR-US: Veilid
CVE-2023-37250 (Unity Parsec before 8 has a TOCTOU race condition that permits local a ...)
- TODO: check
+ NOT-FOR-US: Unity Parsec
CVE-2023-4433 (Cross-site Scripting (XSS) - Stored in GitHub repository cockpit-hq/co ...)
NOT-FOR-US: Cockpit Content Platform (different from src:cockpit)
CVE-2023-4432 (Cross-site Scripting (XSS) - Reflected in GitHub repository cockpit-hq ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/974df3c89aa25089294aefc6b117c8cf7c9962da
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/974df3c89aa25089294aefc6b117c8cf7c9962da
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230820/88991a64/attachment.htm>
More information about the debian-security-tracker-commits
mailing list