[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Aug 23 12:19:25 BST 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
bc96cf64 by Salvatore Bonaccorso at 2023-08-23T13:19:11+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,33 +1,33 @@
 CVE-2023-4404 (The Donation Forms by Charitable plugin for WordPress is vulnerable to ...)
 	NOT-FOR-US: Donation Forms by Charitable plugin for WordPress
 CVE-2023-4041 (Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') ...)
-	TODO: check
+	NOT-FOR-US: Silicon Labs Gecko Bootloader on ARM (Firmware Update File Parser modules)
 CVE-2023-41105 (An issue was discovered in Python 3.11 through 3.11.4. If a path conta ...)
 	TODO: check
 CVE-2023-41104 (libvmod-digest before 1.0.3, as used in Varnish Enterprise 6.0.x befor ...)
 	TODO: check
 CVE-2023-41100 (An issue was discovered in the hcaptcha (aka hCaptcha for EXT:form) ex ...)
-	TODO: check
+	NOT-FOR-US: TYPO3 extension
 CVE-2023-41098 (An issue was discovered in MISP 2.4.174. In app/Controller/DashboardsC ...)
-	TODO: check
+	NOT-FOR-US: MISP
 CVE-2023-40370 (IBM Robotic Process Automation 21.0.0 through 21.0.7.1 runtime is vuln ...)
 	NOT-FOR-US: IBM
 CVE-2023-40282 (Improper authentication vulnerability in Rakuten WiFi Pocket all versi ...)
-	TODO: check
+	NOT-FOR-US: Rakuten WiFi Pocket
 CVE-2023-40158 (Hidden functionality vulnerability in the CBC products allows a remote ...)
 	TODO: check
 CVE-2023-40144 (OS command injection vulnerability in the CBC products allows a remote ...)
 	TODO: check
 CVE-2023-3495 (** UNSUPPORTED WHEN ASSIGNED ** Out-of-bounds Write vulnerability in H ...)
-	TODO: check
+	NOT-FOR-US: Hitachi
 CVE-2023-39986 (** UNSUPPORTED WHEN ASSIGNED ** Out-of-bounds Read vulnerability in Hi ...)
-	TODO: check
+	NOT-FOR-US: Hitachi
 CVE-2023-39985 (** UNSUPPORTED WHEN ASSIGNED ** Out-of-bounds Write vulnerability in H ...)
-	TODO: check
+	NOT-FOR-US: Hitachi
 CVE-2023-39984 (** UNSUPPORTED WHEN ASSIGNED ** Improper Restriction of Operations wit ...)
-	TODO: check
+	NOT-FOR-US: Hitachi
 CVE-2023-39026 (Directory Traversal vulnerability in FileMage Gateway Windows Deployme ...)
-	TODO: check
+	NOT-FOR-US: FileMage Gateway Windows Deployments
 CVE-2023-38734 (IBM Robotic Process Automation 21.0.0 through 21.0.7.1 and 23.0.0 thro ...)
 	NOT-FOR-US: IBM
 CVE-2023-38733 (IBM Robotic Process Automation 21.0.0 through 21.0.7.1 and 23.0.0 thro ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bc96cf641d3aa1e38d31f1e22e4f620d9df3a46e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bc96cf641d3aa1e38d31f1e22e4f620d9df3a46e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230823/6fecc7f3/attachment.htm>

More information about the debian-security-tracker-commits mailing list