[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Dec 13 17:04:47 GMT 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
2230d56a by Salvatore Bonaccorso at 2023-12-13T18:04:16+01:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -35,7 +35,7 @@ CVE-2023-48791 (An improper neutralization of special elements used in a command
CVE-2023-48782 (A improper neutralization of special elements used in an os command (' ...)
NOT-FOR-US: FortiGuard
CVE-2023-48225 (Laf is a cloud development platform. Prior to version 1.0.0-beta.13, t ...)
- TODO: check
+ NOT-FOR-US: Laf
CVE-2023-47579 (Relyum RELY-PCIe 22.2.1 devices suffer from a system group misconfigur ...)
NOT-FOR-US: Relyum RELY-PCIe
CVE-2023-47578 (Relyum RELY-PCIe 22.2.1 and RELY-REC 23.1.0 devices are susceptible to ...)
@@ -113,7 +113,7 @@ CVE-2023-48313 (Umbraco is an ASP.NET content management system (CMS). Starting
CVE-2023-48227 (Umbraco is an ASP.NET content management system (CMS). Starting in ver ...)
NOT-FOR-US: Umbraco
CVE-2023-43364 (main.py in Searchor before 2.4.2 uses eval on CLI input, which may cau ...)
- TODO: check
+ NOT-FOR-US: Searchor
CVE-2023-41337 (h2o is an HTTP server with support for HTTP/1.x, HTTP/2 and HTTP/3. In ...)
TODO: check
CVE-2023-38694 (Umbraco is an ASP.NET content management system (CMS). Starting in ver ...)
@@ -40064,7 +40064,7 @@ CVE-2023-28468 (An issue was discovered in FvbServicesRuntimeDxe in Insyde Insyd
CVE-2023-28467 (In MyBB before 1.8.34, there is XSS in the User CP module via the user ...)
NOT-FOR-US: MyBB
CVE-2023-28465 (The package-decompression feature in HL7 (Health Level 7) FHIR Core Li ...)
- TODO: check
+ NOT-FOR-US: HL7 (Health Level 7) FHIR Core Libraries
CVE-2023-28464 (hci_conn_cleanup in net/bluetooth/hci_conn.c in the Linux kernel throu ...)
- linux <not-affected> (Vulnerable code not present)
NOTE: https://www.openwall.com/lists/oss-security/2023/03/28/2
@@ -361080,7 +361080,7 @@ CVE-2018-16155
CVE-2018-16154
RESERVED
CVE-2018-16153 (An issue was discovered in Apereo Opencast 4.x through 10.x before 10. ...)
- TODO: check
+ NOT-FOR-US: Opencast
CVE-2018-16152 (In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp pl ...)
{DSA-4305-1 DLA-1522-1}
- strongswan 5.7.0-1
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2230d56a6df5d59c4708d0bead32fe48caec301e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2230d56a6df5d59c4708d0bead32fe48caec301e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231213/fb776ae2/attachment.htm>
More information about the debian-security-tracker-commits
mailing list