[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Jan 23 21:43:45 GMT 2023



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3a4d3d12 by Salvatore Bonaccorso at 2023-01-23T22:43:14+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -209,11 +209,11 @@ CVE-2023-0442
 CVE-2023-0441
 	RESERVED
 CVE-2023-0440 (Exposure of Sensitive Information to an Unauthorized Actor in GitHub r ...)
-	TODO: check
+	NOT-FOR-US: healthchecks
 CVE-2023-0439
 	RESERVED
 CVE-2023-0438 (Cross-Site Request Forgery (CSRF) in GitHub repository modoboa/modoboa ...)
-	TODO: check
+	NOT-FOR-US: Modoboa
 CVE-2023-0437
 	RESERVED
 CVE-2023-0436
@@ -765,15 +765,15 @@ CVE-2023-24101
 CVE-2023-24100
 	RESERVED
 CVE-2023-24099 (** UNSUPPORTED WHEN ASSIGNED ** TrendNet Wireless AC Easy-Upgrader TEW ...)
-	TODO: check
+	NOT-FOR-US: TrendNet
 CVE-2023-24098 (** UNSUPPORTED WHEN ASSIGNED ** TrendNet Wireless AC Easy-Upgrader TEW ...)
-	TODO: check
+	NOT-FOR-US: TrendNet
 CVE-2023-24097 (** UNSUPPORTED WHEN ASSIGNED ** TrendNet Wireless AC Easy-Upgrader TEW ...)
-	TODO: check
+	NOT-FOR-US: TrendNet
 CVE-2023-24096 (** UNSUPPORTED WHEN ASSIGNED ** TrendNet Wireless AC Easy-Upgrader TEW ...)
-	TODO: check
+	NOT-FOR-US: TrendNet
 CVE-2023-24095 (** UNSUPPORTED WHEN ASSIGNED ** TrendNet Wireless AC Easy-Upgrader TEW ...)
-	TODO: check
+	NOT-FOR-US: TrendNet
 CVE-2023-24094
 	RESERVED
 CVE-2023-24093
@@ -823,7 +823,7 @@ CVE-2023-24072
 CVE-2023-24071
 	RESERVED
 CVE-2023-24070 (app/View/AuthKeys/authkey_display.ctp in MISP through 2.4.167 has an X ...)
-	TODO: check
+	NOT-FOR-US: MISP
 CVE-2023-24069 (Signal Desktop before 6.2.0 on Windows, Linux, and macOS allows an att ...)
 	TODO: check
 CVE-2023-24068 (Signal Desktop before 6.2.0 on Windows, Linux, and macOS allows an att ...)
@@ -892,7 +892,7 @@ CVE-2023-XXXX [wnpa-sec-2023-01: EAP dissector crash]
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2023-01.html
 	NOTE: https://gitlab.com/wireshark/wireshark/-/issues/18622
 CVE-2023-24059 (Grand Theft Auto V for PC allows attackers to achieve partial remote c ...)
-	TODO: check
+	NOT-FOR-US: Grand Theft Auto V for PC
 CVE-2023-24058 (Booked Scheduler 2.5.5 allows authenticated users to create and schedu ...)
 	NOT-FOR-US: Booked Scheduler
 CVE-2023-24057



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3a4d3d120b75a3eefae8b4bf3587a0e8459ea0b7

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3a4d3d120b75a3eefae8b4bf3587a0e8459ea0b7
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230123/52dd3342/attachment.htm>


More information about the debian-security-tracker-commits mailing list