[Git][security-tracker-team/security-tracker][master] Process some NFUs

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
844320ad by Salvatore Bonaccorso at 2023-07-28T22:22:12+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2,15 +2,15 @@ CVE-2023-3598 (Out of bounds read and write in ANGLE in Google Chrome prior to 1
 	- chromium 114.0.5735.90-1
 	[buster] - chromium <end-of-life> (see DSA 5046)
 CVE-2023-3488 (Uninitialized buffer in GBL parser in Silicon Labs GSDK v4.3.0 and ear ...)
-	TODO: check
+	NOT-FOR-US: GBL parser in Silicon Labs GSDK
 CVE-2023-39190
 	REJECTED
 CVE-2023-39023 (university compass v2.2.0 and below was discovered to contain a code i ...)
-	TODO: check
+	NOT-FOR-US: university compass
 CVE-2023-39022 (oscore v2.2.6 and below was discovered to contain a code injection vul ...)
 	TODO: check
 CVE-2023-39021 (wix-embedded-mysql v4.6.1 and below was discovered to contain a code i ...)
-	TODO: check
+	NOT-FOR-US: wix-embedded-mysql
 CVE-2023-39020 (stanford-parser v3.9.2 and below was discovered to contain a code inje ...)
 	TODO: check
 CVE-2023-39018 (FFmpeg 0.7.0 and below was discovered to contain a code injection vuln ...)
@@ -28,31 +28,31 @@ CVE-2023-39010 (BoofCV 0.42 was discovered to contain a code injection vulnerabi
 CVE-2023-38992 (jeecg-boot v3.5.1 was discovered to contain a SQL injection vulnerabil ...)
 	TODO: check
 CVE-2023-38685 (Discourse is an open source discussion platform. Prior to version 3.0. ...)
-	TODO: check
+	NOT-FOR-US: Discourse
 CVE-2023-38684 (Discourse is an open source discussion platform. Prior to version 3.0. ...)
-	TODO: check
+	NOT-FOR-US: Discourse
 CVE-2023-38498 (Discourse is an open source discussion platform. Prior to version 3.0. ...)
-	TODO: check
+	NOT-FOR-US: Discourse
 CVE-2023-37906 (Discourse is an open source discussion platform. Prior to version 3.0. ...)
-	TODO: check
+	NOT-FOR-US: Discourse
 CVE-2023-37904 (Discourse is an open source discussion platform. Prior to version 3.0. ...)
-	TODO: check
+	NOT-FOR-US: Discourse
 CVE-2023-37754 (PowerJob v4.3.3 was discovered to contain a remote command execution ( ...)
-	TODO: check
+	NOT-FOR-US: PowerJob
 CVE-2023-37467 (Discourse is an open source discussion platform. Prior to version 3.1. ...)
-	TODO: check
+	NOT-FOR-US: Discourse
 CVE-2023-31937 (Sql injection vulnerability found in Rail Pass Management System v.1.0 ...)
-	TODO: check
+	NOT-FOR-US: Rail Pass Management System
 CVE-2023-31936 (Sql injection vulnerability found in Rail Pass Management System v.1.0 ...)
-	TODO: check
+	NOT-FOR-US: Rail Pass Management System
 CVE-2023-31935 (Cross Site Scripting vulnerability found in Rail Pass Management Syste ...)
-	TODO: check
+	NOT-FOR-US: Rail Pass Management System
 CVE-2023-31934 (Cross Site Scripting vulnerability found in Rail Pass Management Syste ...)
-	TODO: check
+	NOT-FOR-US: Rail Pass Management System
 CVE-2023-31933 (Sql injection vulnerability found in Rail Pass Management System v.1.0 ...)
-	TODO: check
+	NOT-FOR-US: Rail Pass Management System
 CVE-2023-31932 (Sql injection vulnerability found in Rail Pass Management System v.1.0 ...)
-	TODO: check
+	NOT-FOR-US: Rail Pass Management System
 CVE-2023-2685 (A vulnerability was found in AO-OPC server versions mentioned above. A ...)
 	TODO: check
 CVE-2023-3990 (A vulnerability classified as problematic has been found in Mingsoft M ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/844320adc0fc9b58bd8db1f80ca6fb6024a7792d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/844320adc0fc9b58bd8db1f80ca6fb6024a7792d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230728/e407cd4c/attachment-0001.htm>