[Git][security-tracker-team/security-tracker][master] NFUs

Mon Jan 16 11:41:40 GMT 2023


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f8f1a07a by Moritz Muehlenhoff at 2023-01-16T12:41:10+01:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -73,41 +73,41 @@ CVE-2023-0300 (Cross-site Scripting (XSS) - Reflected in GitHub repository alfio
 CVE-2023-0299 (Improper Input Validation in GitHub repository publify/publify prior t ...)
 	NOT-FOR-US: Publify
 CVE-2022-4889 (A vulnerability classified as critical was found in visegripped Strack ...)
-	TODO: check
+	NOT-FOR-US: Stracker
 CVE-2018-25075 (A vulnerability classified as critical has been found in karsany OBrid ...)
-	TODO: check
+	NOT-FOR-US: OBridge
 CVE-2016-15019 (A vulnerability was found in tombh jekbox. It has been rated as proble ...)
-	TODO: check
+	NOT-FOR-US: jekbox
 CVE-2016-15018 (A vulnerability was found in krail-jpa up to 0.9.1. It has been classi ...)
-	TODO: check
+	NOT-FOR-US: krail-jpa
 CVE-2015-10052 (** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was classified  ...)
-	TODO: check
+	NOT-FOR-US: gibb-modul-151
 CVE-2015-10051 (A vulnerability, which was classified as critical, has been found in b ...)
-	TODO: check
+	NOT-FOR-US: bony2023 Discussion-Board
 CVE-2015-10050 (A vulnerability was found in brandonfire miRNA_Database_by_PHP_MySql.  ...)
-	TODO: check
+	NOT-FOR-US: miRNA_Database_by_PHP_MySql
 CVE-2015-10049 (A vulnerability was found in Overdrive Eletrônica course-builder  ...)
-	TODO: check
+	NOT-FOR-US: Overdrive Eletronica course-builder
 CVE-2015-10048 (A vulnerability was found in bmattoso desafio_buzz_woody. It has been  ...)
-	TODO: check
+	NOT-FOR-US: desafio_buzz_woody
 CVE-2015-10047 (A vulnerability was found in KYUUBl school-register. It has been class ...)
-	TODO: check
+	NOT-FOR-US: KYUUBl school-register
 CVE-2015-10046 (A vulnerability has been found in lolfeedback and classified as critic ...)
-	TODO: check
+	NOT-FOR-US: lolfeedback
 CVE-2015-10045 (A vulnerability, which was classified as critical, was found in tutran ...)
-	TODO: check
+	NOT-FOR-US: tutrantta project_todolist
 CVE-2015-10044 (A vulnerability classified as critical was found in gophergala sqldump ...)
-	TODO: check
+	NOT-FOR-US: gophergala sqldump
 CVE-2014-125079 (A vulnerability was found in agy pontifex.http. It has been declared a ...)
-	TODO: check
+	NOT-FOR-US: pontifex.http
 CVE-2014-125078 (A vulnerability was found in yanheven console and classified as proble ...)
-	TODO: check
+	NOT-FOR-US: yanheven console
 CVE-2014-125077 (A vulnerability, which was classified as critical, has been found in p ...)
-	TODO: check
+	NOT-FOR-US: pointhi searx_stats
 CVE-2023-23590 (Mercedes-Benz XENTRY Retail Data Storage 7.8.1 allows remote attackers ...)
-	TODO: check
+	NOT-FOR-US: Mercedes-Benz
 CVE-2023-0298 (Improper Authorization in GitHub repository firefly-iii/firefly-iii pr ...)
-	TODO: check
+	NOT-FOR-US: firefly-iii
 CVE-2023-0297 (Code Injection in GitHub repository pyload/pyload prior to 0.5.0b3.dev ...)
 	- pyload <itp> (bug #1001980)
 CVE-2023-0296
@@ -121,13 +121,13 @@ CVE-2023-0293 (The Mediamatic – Media Library Folders plugin for WordPress
 CVE-2017-20169 (A vulnerability, which was classified as critical, has been found in G ...)
 	NOT-FOR-US: GGGGGGGG ToN-MasterServer
 CVE-2015-10043 (A vulnerability, which was classified as critical, was found in abreen ...)
-	TODO: check
+	NOT-FOR-US: abreen Apollo
 CVE-2015-10042 (** UNSUPPORTED WHEN ASSIGNED ** A vulnerability classified as critical ...)
 	NOT-FOR-US: Dovgalyuk AIBattle
 CVE-2015-10041 (** UNSUPPORTED WHEN ASSIGNED ** A vulnerability classified as critical ...)
 	NOT-FOR-US: Dovgalyuk AIBattle
 CVE-2015-10040 (A vulnerability was found in gitlearn. It has been declared as problem ...)
-	TODO: check
+	NOT-FOR-US: gitlearn
 CVE-2023-23588
 	RESERVED
 CVE-2023-23587
@@ -141,7 +141,7 @@ CVE-2023-0291
 CVE-2023-0290
 	RESERVED
 CVE-2023-0289 (Cross-site Scripting (XSS) - Stored in GitHub repository craigk5n/webc ...)
-	TODO: check
+	NOT-FOR-US: craigk5n/webcalendar
 CVE-2023-0288 (Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1 ...)
 	- vim <unfixed>
 	[buster] - vim <no-dsa> (Minor issue)
@@ -196,7 +196,7 @@ CVE-2021-4312 (** UNSUPPORTED WHEN ASSIGNED ** A vulnerability classified as pro
 CVE-2009-10002 (A vulnerability, which was classified as problematic, has been found i ...)
 	NOT-FOR-US: dpup fittr-flickr
 CVE-2009-10001 (A vulnerability classified as problematic was found in jianlinwei cool ...)
-	TODO: check
+	NOT-FOR-US: jianlinwei cool-php-captcha
 CVE-2023-23589 (The SafeSocks option in Tor before 0.4.7.13 has a logic error in which ...)
 	- tor 0.4.7.13-1
 	NOTE: https://gitlab.torproject.org/tpo/core/tor/-/raw/release-0.4.7/ReleaseNotes
@@ -504,7 +504,7 @@ CVE-2023-0249
 CVE-2023-0248
 	RESERVED
 CVE-2023-0247 (Uncontrolled Search Path Element in GitHub repository bits-and-blooms/ ...)
-	TODO: check
+	NOT-FOR-US: bits-and-blooms/bloom
 CVE-2023-0246 (A vulnerability, which was classified as problematic, was found in ear ...)
 	NOT-FOR-US: earclink ESPCMS
 CVE-2023-0245 (A vulnerability, which was classified as critical, has been found in S ...)
@@ -1886,7 +1886,7 @@ CVE-2023-0146
 CVE-2023-0145
 	RESERVED
 CVE-2017-20167 (A vulnerability, which was classified as problematic, was found in Min ...)
-	TODO: check
+	NOT-FOR-US: Minichan
 CVE-2016-15017 (A vulnerability has been found in fabarea media_upload and classified  ...)
 	NOT-FOR-US: fabarea media_upload
 CVE-2014-125073 (A vulnerability was found in mapoor voteapp. It has been rated as crit ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f8f1a07ac513e6b93a97ecc9dee16e384dbede8d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f8f1a07ac513e6b93a97ecc9dee16e384dbede8d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230116/bf23049a/attachment-0001.htm>
