[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Dec 14 08:28:36 GMT 2023



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5b2677fb by Salvatore Bonaccorso at 2023-12-14T09:28:09+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -27,9 +27,9 @@ CVE-2023-50248 (CKAN is an open-source data management system for powering data
 CVE-2023-50246 (jq is a command-line JSON processor. Version 1.7 is vulnerable to heap ...)
 	TODO: check
 CVE-2023-49878 (IBM System Storage Virtualization Engine TS7700 3957-VEC, 3948-VED and ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2023-49877 (IBM System Storage Virtualization Engine TS7700 3957-VEC, 3948-VED and ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2023-49646 (Improper authentication in some Zoom clients before version 5.16.5 may ...)
 	TODO: check
 CVE-2023-48702 (Jellyfin is a system for managing and streaming media. Prior to versio ...)
@@ -47,13 +47,13 @@ CVE-2023-47620 (Scrypted is a home video integration and automation platform. In
 CVE-2023-47619 (Audiobookshelf is a self-hosted audiobook and podcast server. In versi ...)
 	TODO: check
 CVE-2023-45184 (IBM i Access Client Solutions 1.1.2 through 1.1.4 and 1.1.4.3 through  ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2023-45174 (IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a privileged local user to  ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2023-45170 (IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2023-45166 (IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2023-44709 (PlutoSVG commit 336c02997277a1888e6ccbbbe674551a0582e5c4 and before wa ...)
 	TODO: check
 CVE-2023-43586 (Path traversal in Zoom Desktop Client for Windows, Zoom VDI Client for ...)
@@ -63,7 +63,7 @@ CVE-2023-43585 (Improper access control in Zoom Mobile App for iOS and Zoom SDKs
 CVE-2023-43583 (Cryptographic issues Zoom Mobile App for Android, Zoom Mobile App for  ...)
 	TODO: check
 CVE-2023-43042 (IBM SAN Volume Controller, IBM Storwize, IBM FlashSystem and IBM Stora ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2023-41720 (A vulnerability exists on all versions of Ivanti Connect Secure below  ...)
 	TODO: check
 CVE-2023-41719 (A vulnerability exists on all versions of Ivanti Connect Secure below  ...)
@@ -76754,7 +76754,7 @@ CVE-2022-43845
 CVE-2022-43844 (IBM Robotic Process Automation for Cloud Pak 20.12 through 21.0.3 is v ...)
 	NOT-FOR-US: IBM
 CVE-2022-43843 (IBM Spectrum Scale 5.1.5.0 through 5.1.5.1 uses weaker than expected c ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2022-43842
 	RESERVED
 CVE-2022-43841



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5b2677fbc9a0d70c3653f50c47226a52ded7012a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5b2677fbc9a0d70c3653f50c47226a52ded7012a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231214/535dc7af/attachment.htm>


More information about the debian-security-tracker-commits mailing list