[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Dec 13 08:19:13 GMT 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
795e6c1a by Salvatore Bonaccorso at 2023-12-13T09:18:45+01:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,43 +1,43 @@
 CVE-2023-6753 (Path Traversal in GitHub repository mlflow/mlflow prior to 2.9.2.)
-	TODO: check
+	NOT-FOR-US: mlflow
 CVE-2023-50263 (Nautobot is a Network Source of Truth and Network Automation Platform  ...)
-	TODO: check
+	NOT-FOR-US: Nautobot
 CVE-2023-50252 (php-svg-lib is an SVG file parsing / rendering library. Prior to versi ...)
 	TODO: check
 CVE-2023-50251 (php-svg-lib is an SVG file parsing / rendering library. Prior to versi ...)
 	TODO: check
 CVE-2023-48791 (An improper neutralization of special elements used in a command ('Com ...)
-	TODO: check
+	NOT-FOR-US: FortiGuard
 CVE-2023-48782 (A improper neutralization of special elements used in an os command (' ...)
-	TODO: check
+	NOT-FOR-US: FortiGuard
 CVE-2023-48225 (Laf is a cloud development platform. Prior to version 1.0.0-beta.13, t ...)
 	TODO: check
 CVE-2023-47579 (Relyum RELY-PCIe 22.2.1 devices suffer from a system group misconfigur ...)
-	TODO: check
+	NOT-FOR-US: Relyum RELY-PCIe
 CVE-2023-47578 (Relyum RELY-PCIe 22.2.1 and RELY-REC 23.1.0 devices are susceptible to ...)
-	TODO: check
+	NOT-FOR-US: Relyum RELY-PCIe and RELY-REC
 CVE-2023-47577 (An issue discovered in Relyum RELY-PCIe 22.2.1 and RELY-REC 23.1.0 all ...)
-	TODO: check
+	NOT-FOR-US: Relyum
 CVE-2023-47576 (An issue was discovered in Relyum RELY-PCIe 22.2.1 and RELY-REC 23.1.0 ...)
-	TODO: check
+	NOT-FOR-US: Relyum
 CVE-2023-47575 (An issue was discovered on Relyum RELY-PCIe 22.2.1 and RELY-REC 23.1.0 ...)
-	TODO: check
+	NOT-FOR-US: Relyum
 CVE-2023-47574 (An issue was discovered on Relyum RELY-PCIe 22.2.1 and RELY-REC 23.1.0 ...)
-	TODO: check
+	NOT-FOR-US: Relyum
 CVE-2023-47573 (An issue discovered in Relyum RELY-PCIe 22.2.1 devices. The authorizat ...)
-	TODO: check
+	NOT-FOR-US: Relyum
 CVE-2023-47536 (An improper access control vulnerability [CWE-284] in FortiOS version  ...)
-	TODO: check
+	NOT-FOR-US: FortiGuard
 CVE-2023-46713 (An improper output neutralization for logs in Fortinet FortiWeb 6.2.0  ...)
-	TODO: check
+	NOT-FOR-US: FortiGuard
 CVE-2023-46675 (An issue was discovered by Elastic whereby sensitive information may b ...)
 	TODO: check
 CVE-2023-45864 (A race condition issue discovered in Samsung Mobile Processor Exynos 9 ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2023-45801 (Improper Authentication vulnerability in Nadatel DVR allows Informatio ...)
-	TODO: check
+	NOT-FOR-US: Nadatel
 CVE-2023-45800 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
-	TODO: check
+	NOT-FOR-US: Hanbiro
 CVE-2023-45725 (Design document functions which receive a user http request object may ...)
 	TODO: check
 CVE-2023-45587 (An improper neutralization of input during web page generation ('cross ...)
@@ -67,13 +67,13 @@ CVE-2023-5379 (A flaw was found in Undertow. When an AJP request is sent that ex
 CVE-2023-49921
 	- elasticsearch <removed>
 CVE-2023-6687 (An issue was discovered by Elastic whereby Elastic Agent would log a r ...)
-	TODO: check
+	NOT-FOR-US: Elastic whereby Elastic Agent
 CVE-2023-50247 (h2o is an HTTP server with support for HTTP/1.x, HTTP/2 and HTTP/3. Th ...)
 	TODO: check
 CVE-2023-49923 (An issue was discovered by Elastic whereby the Documents API of App Se ...)
-	TODO: check
+	NOT-FOR-US: Elastic whereby the Documents API of App Search
 CVE-2023-49922 (An issue was discovered by Elastic whereby Beats and Elastic Agent wou ...)
-	TODO: check
+	NOT-FOR-US: Elastic whereby Beats and Elastic Agent
 CVE-2023-49279 (Umbraco is an ASP.NET content management system (CMS). Starting in ver ...)
 	NOT-FOR-US: Umbraco
 CVE-2023-49278 (Umbraco is an ASP.NET content management system (CMS). Starting in ver ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/795e6c1a27365042688bed8648b010df94608ac5

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/795e6c1a27365042688bed8648b010df94608ac5
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231213/91714ef7/attachment.htm>

More information about the debian-security-tracker-commits mailing list