[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Jul 6 10:15:40 BST 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
564cab1e by Salvatore Bonaccorso at 2023-07-06T10:51:36+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
 CVE-2023-3521 (Cross-site Scripting (XSS) - Reflected in GitHub repository fossbillin ...)
-	TODO: check
+	NOT-FOR-US: fossbilling
 CVE-2023-3520 (Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub ...)
 	TODO: check
 CVE-2023-36828 (Statamic is a flat-first, Laravel and Git powered content management s ...)
@@ -11,13 +11,13 @@ CVE-2023-36822 (Uptime Kuma, a self-hosted monitoring tool, has a path traversal
 CVE-2023-36821 (Uptime Kuma, a self-hosted monitoring tool, allows an authenticated at ...)
 	TODO: check
 CVE-2023-36809 (Kiwi TCMS, an open source test management system allows users to uploa ...)
-	TODO: check
+	NOT-FOR-US: Kiwi TCMS
 CVE-2023-36808 (GLPI is a free asset and IT management software package. Starting in v ...)
 	TODO: check
 CVE-2023-36458 (1Panel is an open source Linux server operation and maintenance manage ...)
-	TODO: check
+	NOT-FOR-US: 1Panel
 CVE-2023-36457 (1Panel is an open source Linux server operation and maintenance manage ...)
-	TODO: check
+	NOT-FOR-US: 1Panel
 CVE-2023-35940 (GLPI is a free asset and IT management software package. Starting in v ...)
 	TODO: check
 CVE-2023-35939 (GLPI is a free asset and IT management software package. Starting in v ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/564cab1e5c0b08f55a4f501edcc9e16ef9ede3e6

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/564cab1e5c0b08f55a4f501edcc9e16ef9ede3e6
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230706/7455fcf7/attachment.htm>

More information about the debian-security-tracker-commits mailing list