[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Jan 27 20:54:21 GMT 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c97a87ca by Salvatore Bonaccorso at 2023-01-27T21:52:54+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -11,7 +11,7 @@ CVE-2023-22365
 CVE-2023-22299
 	RESERVED
 CVE-2023-0549 (A vulnerability, which was classified as problematic, has been found i ...)
-	TODO: check
+	NOT-FOR-US: YAFNET
 CVE-2023-0548
 	RESERVED
 CVE-2023-0547
@@ -41,21 +41,21 @@ CVE-2023-0536
 CVE-2023-0535
 	RESERVED
 CVE-2023-0534 (A vulnerability, which was classified as critical, was found in Source ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Online Tours & Travels Management System
 CVE-2023-0533 (A vulnerability, which was classified as critical, has been found in S ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Online Tours & Travels Management System
 CVE-2023-0532 (A vulnerability classified as critical was found in SourceCodester Onl ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Online Tours & Travels Management System
 CVE-2023-0531 (A vulnerability classified as critical has been found in SourceCodeste ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Online Tours & Travels Management System
 CVE-2023-0530 (A vulnerability was found in SourceCodester Online Tours & Travels ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Online Tours & Travels Management System
 CVE-2023-0529 (A vulnerability was found in SourceCodester Online Tours & Travels ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Online Tours & Travels Management System
 CVE-2023-0528 (A vulnerability was found in SourceCodester Online Tours & Travels ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Online Tours & Travels Management System
 CVE-2023-0527 (A vulnerability was found in PHPGurukul Online Security Guards Hiring  ...)
-	TODO: check
+	NOT-FOR-US: PHPGurukul Online Security Guards Hiring System
 CVE-2023-0526
 	RESERVED
 CVE-2023-24580
@@ -99,7 +99,7 @@ CVE-2023-0521
 CVE-2023-0520
 	RESERVED
 CVE-2023-0519 (Cross-site Scripting (XSS) - Stored in GitHub repository modoboa/modob ...)
-	TODO: check
+	NOT-FOR-US: Modoboa
 CVE-2023-0518
 	RESERVED
 CVE-2020-36659 (In Apache::Session::Browseable before 1.3.6, validity of the X.509 cer ...)
@@ -326,7 +326,7 @@ CVE-2023-24497
 CVE-2023-24496
 	RESERVED
 CVE-2023-0493 (Improper Neutralization of Equivalent Special Elements in GitHub repos ...)
-	TODO: check
+	NOT-FOR-US: btcpayserver
 CVE-2023-0492
 	RESERVED
 CVE-2023-0491
@@ -428,7 +428,7 @@ CVE-2023-0471 (Use after free in WebTransport in Google Chrome prior to 109.0.54
 	- chromium 109.0.5414.119-1
 	[buster] - chromium <end-of-life> (see DSA 5046)
 CVE-2023-0470 (Cross-site Scripting (XSS) - Stored in GitHub repository modoboa/modob ...)
-	TODO: check
+	NOT-FOR-US: Modoboa
 CVE-2023-0469 (A use-after-free flaw was found in io_uring/filetable.c in io_install_ ...)
 	- linux 6.0.12-1
 	[bullseye] - linux <not-affected> (Vulnerable code not present)
@@ -681,9 +681,9 @@ CVE-2023-22321
 CVE-2023-22295
 	RESERVED
 CVE-2023-0452 (All versions of Econolite EOS traffic control software are vulnerable  ...)
-	TODO: check
+	NOT-FOR-US: Econolite EOS traffic control software
 CVE-2023-0451 (All versions of Econolite EOS traffic control software are vulnerable  ...)
-	TODO: check
+	NOT-FOR-US: Econolite EOS traffic control software
 CVE-2023-0450
 	RESERVED
 CVE-2023-0449
@@ -2616,7 +2616,7 @@ CVE-2023-23616
 CVE-2023-23615
 	RESERVED
 CVE-2023-23614 (Pi-hole®'s Web interface (based off of AdminLTE) provides a centr ...)
-	TODO: check
+	NOT-FOR-US: Pi-Hole
 CVE-2023-23613 (OpenSearch is an open source distributed and RESTful search engine. In ...)
 	NOT-FOR-US: OpenSearch
 CVE-2023-23612 (OpenSearch is an open source distributed and RESTful search engine. Op ...)
@@ -5367,7 +5367,7 @@ CVE-2023-22741 (Sofia-SIP is an open-source SIP User-Agent library, compliant wi
 	NOTE: https://github.com/freeswitch/sofia-sip/commit/9defd6f72dd416ee4fcc1a23cccbb159990da0f6 (v1.13.11)
 	NOTE: https://github.com/freeswitch/sofia-sip/security/advisories/GHSA-8599-x7rq-fr54
 CVE-2023-22740 (Discourse is an open source platform for community discussion. Version ...)
-	TODO: check
+	NOT-FOR-US: Discourse
 CVE-2023-22739 (Discourse is an open source platform for community discussion. Version ...)
 	NOT-FOR-US: Discourse
 CVE-2023-22738



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c97a87cabdbfa6ca57c7fffce7bca0ff848ecd34

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c97a87cabdbfa6ca57c7fffce7bca0ff848ecd34
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230127/614cc552/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list