[Git][security-tracker-team/security-tracker][master] Process more NFUs

Wed Dec 13 08:36:52 GMT 2023


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
55ec2434 by Salvatore Bonaccorso at 2023-12-13T09:36:22+01:00
Process more NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -41,23 +41,23 @@ CVE-2023-45800 (Improper Neutralization of Special Elements used in an SQL Comma
 CVE-2023-45725 (Design document functions which receive a user http request object may ...)
 	TODO: check
 CVE-2023-45587 (An improper neutralization of input during web page generation ('cross ...)
-	TODO: check
+	NOT-FOR-US: FortiGuard
 CVE-2023-43122 (Samsung Mobile Processor and Wearable Processor (Exynos 980, 850, 1080 ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2023-42483 (A TOCTOU race condition in Samsung Mobile Processor Exynos 9820, Exyno ...)
-	TODO: check
+	NOT-FOR-US: Samsung
 CVE-2023-41844 (A improper neutralization of input during web page generation ('cross- ...)
-	TODO: check
+	NOT-FOR-US: FortiGuard
 CVE-2023-41678 (A double free in Fortinet FortiOS versions 7.0.0 through 7.0.5, FortiP ...)
-	TODO: check
+	NOT-FOR-US: FortiGuard
 CVE-2023-41673 (An improper authorization vulnerability [CWE-285] in Fortinet FortiADC ...)
-	TODO: check
+	NOT-FOR-US: FortiGuard
 CVE-2023-40716 (An improper neutralization of special elements used in an OS command v ...)
-	TODO: check
+	NOT-FOR-US: FortiGuard
 CVE-2023-3517 (Hitachi Vantara Pentaho Data Integration & Analytics versions before 9 ...)
-	TODO: check
+	NOT-FOR-US: Hitachi Vantara Pentaho Data Integration & Analytics
 CVE-2023-36639 (A use of externally-controlled format string in Fortinet FortiProxy ve ...)
-	TODO: check
+	NOT-FOR-US: FortiGuard
 CVE-2023-6710 (A flaw was found in the mod_proxy_cluster in the Apache server. This i ...)
 	- libapache2-mod-cluster <itp> (bug #731410)
 CVE-2023-5379 (A flaw was found in Undertow. When an AJP request is sent that exceeds ...)
@@ -122522,7 +122522,7 @@ CVE-2022-27490 (A exposure of sensitive information to an unauthorized actor in
 CVE-2022-27489 (A improper neutralization of special elements used in an os command (' ...)
 	NOT-FOR-US: Fortinet
 CVE-2022-27488 (A cross-site request forgery (CSRF) in Fortinet FortiVoiceEnterprise v ...)
-	TODO: check
+	NOT-FOR-US: FortiGuard
 CVE-2022-27487 (A improper privilege management in Fortinet FortiSandbox version 4.2.0 ...)
 	NOT-FOR-US: Fortinet
 CVE-2022-27486



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/55ec243473a55dbb459624128f15505590febbd9

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/55ec243473a55dbb459624128f15505590febbd9
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231213/768350a1/attachment.htm>
