[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Jan 13 22:09:06 GMT 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1dc00e57 by Salvatore Bonaccorso at 2023-01-13T23:08:40+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -17,7 +17,7 @@ CVE-2023-0288 (Heap-based Buffer Overflow in GitHub repository vim/vim prior to
 	NOTE: https://huntr.dev/bounties/550a0852-9be0-4abe-906c-f803b34e41d3
 	NOTE: https://github.com/vim/vim/commit/232bdaaca98c34a99ffadf27bf6ee08be6cc8f6a (v9.0.1189)
 CVE-2023-0287 (A vulnerability was found in ityouknow favorites-web. It has been rate ...)
-	TODO: check
+	NOT-FOR-US: ityouknow favorites-web
 CVE-2023-0286
 	RESERVED
 CVE-2023-0285
@@ -25,11 +25,11 @@ CVE-2023-0285
 CVE-2023-0284
 	RESERVED
 CVE-2023-0283 (A vulnerability classified as critical has been found in SourceCodeste ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Online Flight Booking Management System
 CVE-2023-0282
 	RESERVED
 CVE-2023-0281 (A vulnerability was found in SourceCodester Online Flight Booking Mana ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Online Flight Booking Management System
 CVE-2023-0280
 	RESERVED
 CVE-2023-0279
@@ -61,9 +61,9 @@ CVE-2023-0267
 CVE-2022-4888
 	RESERVED
 CVE-2021-4312 (** UNSUPPORTED WHEN ASSIGNED ** A vulnerability classified as problema ...)
-	TODO: check
+	NOT-FOR-US: Th3-822 Rapidleech
 CVE-2009-10002 (A vulnerability, which was classified as problematic, has been found i ...)
-	TODO: check
+	NOT-FOR-US: dpup fittr-flickr
 CVE-2009-10001 (A vulnerability classified as problematic was found in jianlinwei cool ...)
 	TODO: check
 CVE-2023-XXXX [tor TROVE-2022-02]
@@ -1174,7 +1174,7 @@ CVE-2023-23089
 CVE-2023-0222
 	RESERVED
 CVE-2023-0221 (Product security bypass vulnerability in ACC prior to version 8.3.4 al ...)
-	TODO: check
+	NOT-FOR-US: Trellix
 CVE-2023-0220
 	RESERVED
 CVE-2023-0219
@@ -2947,15 +2947,15 @@ CVE-2010-10003 (A vulnerability classified as critical was found in gesellix tit
 CVE-2023-22602
 	RESERVED
 CVE-2023-22601 (InHand Networks InRouter 302, prior to version IR302 V3.5.56, and InRo ...)
-	TODO: check
+	NOT-FOR-US: InHand Networks InRouter
 CVE-2023-22600 (InHand Networks InRouter 302, prior to version IR302 V3.5.56, and InRo ...)
-	TODO: check
+	NOT-FOR-US: InHand Networks InRouter
 CVE-2023-22599 (InHand Networks InRouter 302, prior to version IR302 V3.5.56, and InRo ...)
-	TODO: check
+	NOT-FOR-US: InHand Networks InRouter
 CVE-2023-22598 (InHand Networks InRouter 302, prior to version IR302 V3.5.56, and InRo ...)
-	TODO: check
+	NOT-FOR-US: InHand Networks InRouter
 CVE-2023-22597 (InHand Networks InRouter 302, prior to version IR302 V3.5.56, and InRo ...)
-	TODO: check
+	NOT-FOR-US: InHand Networks InRouter
 CVE-2023-22596
 	RESERVED
 CVE-2023-22595
@@ -3389,13 +3389,13 @@ CVE-2023-22493 (RSSHub is an open source RSS feed generator. RSSHub is vulnerabl
 CVE-2023-22492 (ZITADEL is a combination of Auth0 and Keycloak. RefreshTokens is an OA ...)
 	NOT-FOR-US: ZITADEL
 CVE-2023-22491 (Gatsby is a free and open source framework based on React that helps d ...)
-	TODO: check
+	NOT-FOR-US: Gatsby
 CVE-2023-22490
 	RESERVED
 CVE-2023-22489 (Flarum is a discussion platform for websites. If the first post of a d ...)
-	TODO: check
+	NOT-FOR-US: Flarum
 CVE-2023-22488 (Flarum is a forum software for building communities. Using the notific ...)
-	TODO: check
+	NOT-FOR-US: Flarum
 CVE-2023-22487 (Flarum is a forum software for building communities. Using the mention ...)
 	NOT-FOR-US: Flarum
 CVE-2023-22486
@@ -3766,9 +3766,9 @@ CVE-2022-48093
 CVE-2022-48092
 	RESERVED
 CVE-2022-48091 (Tramyardg hotel-mgmt-system version 2022.4 is vulnerable to Cross Site ...)
-	TODO: check
+	NOT-FOR-US: Tramyardg hotel-mgmt-system
 CVE-2022-48090 (Tramyardg hotel-mgmt-system version 2022.4 is vulnerable to SQL Inject ...)
-	TODO: check
+	NOT-FOR-US: Tramyardg hotel-mgmt-system
 CVE-2022-48089
 	RESERVED
 CVE-2022-48088
@@ -5620,7 +5620,7 @@ CVE-2022-47578 (** DISPUTED ** An issue was discovered in the endpoint protectio
 CVE-2022-47577 (** DISPUTED ** An issue was discovered in the endpoint protection agen ...)
 	NOT-FOR-US: Zoho
 CVE-2022-4616 (The webserver in Delta DX-3021 versions prior to 1.24 is vulnerable to ...)
-	TODO: check
+	NOT-FOR-US: webserver in Delta DX-3021
 CVE-2023-22275
 	RESERVED
 CVE-2023-22274
@@ -8305,7 +8305,7 @@ CVE-2022-47104
 CVE-2022-47103
 	RESERVED
 CVE-2022-47102 (A cross-site scripting (XSS) vulnerability in Student Study Center Man ...)
-	TODO: check
+	NOT-FOR-US: Student Study Center Management System
 CVE-2022-47101
 	RESERVED
 CVE-2022-47100



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1dc00e574823df3e173ba6767b3bda051e4c5973

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1dc00e574823df3e173ba6767b3bda051e4c5973
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230113/0e0d677e/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list