[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff (@jmm) jmm at debian.org
Mon Feb 27 13:16:19 GMT 2023 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
27f06521 by Moritz Muehlenhoff at 2023-02-27T14:15:59+01:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1331,7 +1331,7 @@ CVE-2023-26604
 CVE-2023-26603
 	RESERVED
 CVE-2022-48363 (In MPD before 0.23.8, as used on Automotive Grade Linux and other plat ...)
-	TODO: check
+	NOT-FOR-US: MPD as used by  Automotive Grade Linux
 CVE-2023-26602 (ASUS ASMB8 iKVM firmware through 1.14.51 allows remote attackers to ex ...)
 	NOT-FOR-US: ASUS ASMB8 iKVM firmware
 CVE-2023-26601
@@ -1522,7 +1522,7 @@ CVE-2023-1027
 CVE-2023-1026
 	RESERVED
 CVE-2019-25105 (A vulnerability, which was classified as problematic, was found in dro ...)
-	TODO: check
+	NOT-FOR-US: dro.pm
 CVE-2023-26543
 	RESERVED
 CVE-2023-26542
@@ -1618,7 +1618,7 @@ CVE-2023-1012
 CVE-2023-1011
 	RESERVED
 CVE-2023-1010 (A vulnerability classified as critical was found in vox2png 1.0. Affec ...)
-	TODO: check
+	NOT-FOR-US: vox2png
 CVE-2023-1009 (A vulnerability classified as problematic has been found in DrayTek Vi ...)
 	NOT-FOR-US: DrayTek Vigor 2960
 CVE-2023-1008 (A vulnerability was found in Twister Antivirus 8.17. It has been rated ...)
@@ -1630,7 +1630,7 @@ CVE-2023-1006 (A vulnerability was found in SourceCodester Medical Certificate G
 CVE-2023-1005 (A vulnerability was found in JP1016 Markdown-Electron and classified a ...)
 	NOT-FOR-US: JP1016 Markdown-Electron
 CVE-2023-1004 (A vulnerability has been found in MarkText up to 0.17.1 and classified ...)
-	TODO: check
+	NOT-FOR-US: MarkText
 CVE-2023-1003
 	RESERVED
 CVE-2023-1002 (A vulnerability, which was classified as problematic, has been found i ...)
@@ -1732,7 +1732,7 @@ CVE-2023-26470
 CVE-2023-26469
 	RESERVED
 CVE-2023-26468 (Cerebrate 1.12 does not properly consider organisation_id during creat ...)
-	TODO: check
+	NOT-FOR-US: Cerebrate
 CVE-2023-26467
 	RESERVED
 CVE-2023-26466
@@ -1764,9 +1764,9 @@ CVE-2023-0996 (There is a vulnerability in the strided image data parsing code i
 	NOTE: https://github.com/strukturag/libheif/pull/759
 	NOTE: https://govtech-csg.github.io/security-advisories/2023/02/24/CVE-2023-0996.html
 CVE-2023-0995 (Cross-site Scripting (XSS) - Stored in GitHub repository unilogies/bum ...)
-	TODO: check
+	NOT-FOR-US: Bumsys
 CVE-2023-0994 (Improper Access Control in GitHub repository francoisjacquet/rosariosi ...)
-	TODO: check
+	NOT-FOR-US: RosarioSIS
 CVE-2023-0993
 	RESERVED
 CVE-2023-0992
@@ -2170,7 +2170,7 @@ CVE-2023-0948
 CVE-2022-48341 (ThingsBoard 3.4.1 could allow a remote authenticated attacker to achie ...)
 	NOT-FOR-US: ThingsBoard
 CVE-2021-4326 (A vulnerability in Imperative framework which allows already-privilege ...)
-	TODO: check
+	NOT-FOR-US: Imperative framework
 CVE-2023-26313
 	RESERVED
 CVE-2023-26312
@@ -2321,7 +2321,7 @@ CVE-2023-26259
 CVE-2023-26258
 	RESERVED
 CVE-2023-26257 (An issue was discovered in the Connected Vehicle Systems Alliance (COV ...)
-	TODO: check
+	NOT-FOR-US: Connected Vehicle Systems Alliance
 CVE-2023-26256
 	RESERVED
 CVE-2023-26255
@@ -2703,7 +2703,7 @@ CVE-2023-26105
 CVE-2023-26104 (All versions of the package lite-web-server are vulnerable to Denial o ...)
 	TODO: check
 CVE-2023-26103 (Versions of the package deno before 1.31.0 are vulnerable to Regular E ...)
-	TODO: check
+	NOT-FOR-US: Deno
 CVE-2023-26102 (All versions of the package rangy are vulnerable to Prototype Pollutio ...)
 	TODO: check
 CVE-2023-0926



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/27f06521df26bc06480098557d6d71fc594ac4b1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/27f06521df26bc06480098557d6d71fc594ac4b1
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230227/d8136811/attachment.htm>

More information about the debian-security-tracker-commits mailing list