[Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Tue Jan 10 12:38:44 GMT 2023
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ee63c827 by Moritz Muehlenhoff at 2023-01-10T13:38:14+01:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -13,7 +13,7 @@ CVE-2023-22905
CVE-2023-22904
RESERVED
CVE-2023-22903 (api/views/user.py in LibrePhotos before e19e539 has incorrect access c ...)
- TODO: check
+ NOT-FOR-US: LibrePhotos
CVE-2023-22902
RESERVED
CVE-2023-22901
@@ -23,7 +23,7 @@ CVE-2023-22900
CVE-2023-22899 (Zip4j through 2.11.2, as used in Threema and other products, does not ...)
TODO: check
CVE-2023-22898 (workers/extractor.py in Pandora (aka pandora-analysis/pandora) 1.3.0 a ...)
- TODO: check
+ NOT-FOR-US: Pandora
CVE-2023-22897
RESERVED
CVE-2023-22896
@@ -91,7 +91,7 @@ CVE-2023-0127
CVE-2023-0126
RESERVED
CVE-2023-0125 (A vulnerability was found in Control iD Panel. It has been declared as ...)
- TODO: check
+ NOT-FOR-US: Control iD Panel
CVE-2023-0124
RESERVED
CVE-2023-0123
@@ -99,19 +99,19 @@ CVE-2023-0123
CVE-2022-48251 (** DISPUTED ** The AES instructions on the ARMv8 platform do not have ...)
TODO: check
CVE-2021-46871 (tag.ex in Phoenix Phoenix.HTML (aka phoenix_html) before 3.0.4 allows ...)
- TODO: check
+ NOT-FOR-US: Phoenix.HTML
CVE-2017-20166 (Ecto 2.2.0 lacks a certain protection mechanism associated with the in ...)
- TODO: check
+ NOT-FOR-US: Ecto
CVE-2015-10035 (A vulnerability was found in gperson angular-test-reporter and classif ...)
- TODO: check
+ NOT-FOR-US: angular-test-reporter
CVE-2015-10034 (A vulnerability has been found in j-nowak workout-organizer and classi ...)
- TODO: check
+ NOT-FOR-US: j-nowak workout-organizer
CVE-2015-10033 (A vulnerability, which was classified as problematic, was found in jvv ...)
- TODO: check
+ NOT-FOR-US: jvvlee MerlinsBoard
CVE-2014-125072 (A vulnerability classified as critical has been found in CherishSin kl ...)
- TODO: check
+ NOT-FOR-US: CherishSin
CVE-2014-125071 (A vulnerability was found in lukehutch Gribbit. It has been classified ...)
- TODO: check
+ NOT-FOR-US: lukehutch Gribbit
CVE-2023-22883
RESERVED
CVE-2023-22882
@@ -183,7 +183,7 @@ CVE-2022-4884 (Path-Traversal in MKP storing in Tribe29 Checkmk <=2.0.0p32 an
CVE-2022-4883
RESERVED
CVE-2022-4882 (A vulnerability was found in kaltura mwEmbed up to 2.91. It has been r ...)
- TODO: check
+ NOT-FOR-US: Kaltura
CVE-2022-48250
RESERVED
CVE-2022-48249
@@ -231,7 +231,7 @@ CVE-2022-46285
CVE-2022-44617
RESERVED
CVE-2021-4311 (A vulnerability classified as problematic was found in Talend Open Stu ...)
- TODO: check
+ NOT-FOR-US: Talend
CVE-2021-4310 (A vulnerability was found in 01-Scripts 01-Artikelsystem. It has been ...)
NOT-FOR-US: 01-Scripts 01-Artikelsystem
CVE-2017-20165 (A vulnerability classified as problematic has been found in debug-js d ...)
@@ -329,7 +329,7 @@ CVE-2022-4880 (A vulnerability was found in stakira OpenUtau. It has been classi
CVE-2022-48229
RESERVED
CVE-2021-4306 (A vulnerability classified as problematic has been found in cronvel te ...)
- TODO: check
+ NOT-FOR-US: Node terminal-kit
CVE-2020-36645 (A vulnerability, which was classified as critical, was found in square ...)
NOT-FOR-US: square squalor
CVE-2020-36644 (A vulnerability has been found in jamesmartin Inline SVG up to 1.7.1 a ...)
@@ -345,9 +345,9 @@ CVE-2016-15012 (** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in for
CVE-2015-10028 (A vulnerability has been found in ss15-this-is-sparta and classified a ...)
NOT-FOR-US: ss15-this-is-sparta
CVE-2015-10027 (A vulnerability, which was classified as problematic, has been found i ...)
- TODO: check
+ NOT-FOR-US: hydrian TTRSS-Auth-LDAP
CVE-2015-10026 (A vulnerability was found in tiredtyrant flairbot. It has been declare ...)
- TODO: check
+ NOT-FOR-US: tiredtyrant flairbot
CVE-2015-10025 (A vulnerability has been found in luelista miniConf up to 1.7.6 and cl ...)
NOT-FOR-US: luelista miniConf
CVE-2015-10024 (A vulnerability classified as critical was found in hoffie larasync. T ...)
@@ -369,19 +369,19 @@ CVE-2014-125062 (A vulnerability classified as critical was found in ananich bit
CVE-2014-125061 (** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in peel file ...)
NOT-FOR-US: peel filebrokerrm
CVE-2014-125060 (A vulnerability, which was classified as critical, was found in holden ...)
- TODO: check
+ NOT-FOR-US: holdennb CollabCal
CVE-2014-125059 (A vulnerability, which was classified as problematic, has been found i ...)
- TODO: check
+ NOT-FOR-US: sternenseemann sternenblog
CVE-2014-125058 (A vulnerability was found in LearnMeSomeCodes project3 and classified ...)
- TODO: check
+ NOT-FOR-US: LearnMeSomeCodes
CVE-2014-125057 (A vulnerability was found in mrobit robitailletheknot. It has been cla ...)
- TODO: check
+ NOT-FOR-US: robitailletheknot
CVE-2014-125056 (A vulnerability was found in Pylons horus and classified as problemati ...)
- TODO: check
+ NOT-FOR-US: Pylons horus
CVE-2014-125055 (A vulnerability, which was classified as problematic, was found in agn ...)
- TODO: check
+ NOT-FOR-US: agnivade easy-scrypt
CVE-2014-125054 (A vulnerability classified as critical was found in koroket RedditOnRa ...)
- TODO: check
+ NOT-FOR-US: RedditOnRails
CVE-2023-22837
RESERVED
CVE-2023-22836
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ee63c827bc56846bdc26a56dd0ec97a8b1bbad6f
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ee63c827bc56846bdc26a56dd0ec97a8b1bbad6f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230110/5986696b/attachment.htm>
More information about the debian-security-tracker-commits
mailing list