[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Feb 21 20:44:04 GMT 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b2ff40ba by Salvatore Bonaccorso at 2023-02-21T21:43:27+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -57,13 +57,13 @@ CVE-2023-0940
 CVE-2023-0939
 	RESERVED
 CVE-2023-0938 (A vulnerability classified as critical has been found in SourceCodeste ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Music Gallery Site
 CVE-2023-0937
 	RESERVED
 CVE-2023-0936 (A vulnerability was found in TP-Link Archer C50 V2_160801. It has been ...)
-	TODO: check
+	NOT-FOR-US: TP-Link
 CVE-2023-0935 (A vulnerability was found in DolphinPHP up to 1.5.1. It has been decla ...)
-	TODO: check
+	NOT-FOR-US: DolphinPHP
 CVE-2023-26267 (php-saml-sp before 1.1.1 and 2.x before 2.1.1 allows reading arbitrary ...)
 	TODO: check
 CVE-2023-26266 (In AFL++ 4.05c, the CmpLog component uses the current working director ...)
@@ -563,9 +563,9 @@ CVE-2017-20179
 CVE-2015-10085 (A vulnerability was found in GoPistolet. It has been declared as probl ...)
 	TODO: check
 CVE-2015-10084 (A vulnerability was found in irontec klear-library chloe and classifie ...)
-	TODO: check
+	NOT-FOR-US: irontec klear-library
 CVE-2015-10083 (A vulnerability has been found in harrystech Dynosaur-Rails and classi ...)
-	TODO: check
+	NOT-FOR-US: harrystech Dynosaur-Rails
 CVE-2023-0919 (Missing Authentication for Critical Function in GitHub repository kare ...)
 	NOT-FOR-US: Kavita
 CVE-2023-0918 (A vulnerability has been found in codeprojects Pharmacy Management Sys ...)
@@ -577,7 +577,7 @@ CVE-2023-0916 (A vulnerability classified as critical was found in SourceCodeste
 CVE-2023-0915 (A vulnerability classified as critical has been found in SourceCodeste ...)
 	NOT-FOR-US: SourceCodester Auto Dealer Management System
 CVE-2017-20178 (** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in Codiad 2. ...)
-	TODO: check
+	NOT-FOR-US: Codiad
 CVE-2016-15027 (A vulnerability was found in meta4creations Post Duplicator Plugin 2.1 ...)
 	NOT-FOR-US: meta4creations Post Duplicator Plugin
 CVE-2015-10082 (A vulnerability classified as problematic has been found in UIKit0 lib ...)
@@ -9221,7 +9221,7 @@ CVE-2023-22986
 CVE-2023-22985
 	RESERVED
 CVE-2023-22984 (A Vulnerability was discovered in Axis 207W network camera. There is a ...)
-	TODO: check
+	NOT-FOR-US: Axis 207W network camera
 CVE-2023-22983
 	RESERVED
 CVE-2023-22982
@@ -9476,7 +9476,7 @@ CVE-2023-22922
 CVE-2023-22921
 	RESERVED
 CVE-2023-22920 (A security misconfiguration vulnerability exists in the Zyxel LTE3316- ...)
-	TODO: check
+	NOT-FOR-US: Zyxel
 CVE-2023-22919
 	RESERVED
 CVE-2023-22918
@@ -20508,7 +20508,7 @@ CVE-2022-45679
 CVE-2022-45678
 	RESERVED
 CVE-2022-45677 (SQL Injection Vulnerability in tanujpatra228 Tution Management System  ...)
-	TODO: check
+	NOT-FOR-US: tanujpatra228 Tution Management System (TMS)
 CVE-2022-45676
 	RESERVED
 CVE-2022-45675
@@ -20735,7 +20735,7 @@ CVE-2022-45566
 CVE-2022-45565
 	RESERVED
 CVE-2022-45564 (SQL Injection vulnerability in znfit Home improvement ERP management s ...)
-	TODO: check
+	NOT-FOR-US: znfit Home improvement ERP management system
 CVE-2022-45563
 	RESERVED
 CVE-2022-45562 (Insecure permissions in Telos Alliance Omnia MPX Node v1.0.0 to v1.4.9 ...)
@@ -34557,7 +34557,7 @@ CVE-2022-38786
 CVE-2022-3354 (A vulnerability has been found in Open5GS up to 2.4.10 and classified  ...)
 	NOT-FOR-US: Open5GS
 CVE-2022-3353 (A vulnerability exists in the IEC 61850 communication stack that affec ...)
-	TODO: check
+	NOT-FOR-US: Hitachi
 CVE-2022-3352 (Use After Free in GitHub repository vim/vim prior to 9.0.0614. ...)
 	{DLA-3204-1}
 	- vim 2:9.0.0626-1 (unimportant)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b2ff40ba401c0599ae6c0de11cd531c5bcb63331

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b2ff40ba401c0599ae6c0de11cd531c5bcb63331
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230221/f22a1290/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list