[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Jun 1 10:16:12 BST 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c23ef313 by Salvatore Bonaccorso at 2023-06-01T11:14:15+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,55 +1,55 @@
 CVE-2023-3029 (A vulnerability has been found in Guangdong Pythagorean OA Office Syst ...)
-	TODO: check
+	NOT-FOR-US: Guangdong Pythagorean OA Office System
 CVE-2023-3028 (Insufficient authentication in the MQTT backend (broker) allows an att ...)
-	TODO: check
+	NOT-FOR-US: HopeChart HQT-401 telematics unit
 CVE-2023-3026 (Cross-site Scripting (XSS) - Stored in GitHub repository jgraph/drawio ...)
-	TODO: check
+	NOT-FOR-US: jgraph/drawio
 CVE-2023-34312 (In Tencent QQ through 9.7.8.29039 and TIM through 3.4.7.22084, QQProte ...)
-	TODO: check
+	NOT-FOR-US: Tencent QQ TIM
 CVE-2023-33778 (Draytek Vigor Routers firmware versions below 3.9.6/4.2.4, Access Poin ...)
-	TODO: check
+	NOT-FOR-US: Draytek Vigor Routers firmware
 CVE-2023-33719 (mp4v2 v2.1.3 was discovered to contain a memory leak via MP4SdpAtom::R ...)
 	- mp4v2 <removed>
 CVE-2023-33716 (mp4v2 v2.1.3 was discovered to contain a memory leak via the class MP4 ...)
 	- mp4v2 <removed>
 CVE-2023-33643 (H3C Magic R300 version R300-2100MV100R004 was discovered to contain a  ...)
-	TODO: check
+	NOT-FOR-US: H3C Magic R300
 CVE-2023-33642 (H3C Magic R300 version R300-2100MV100R004 was discovered to contain a  ...)
-	TODO: check
+	NOT-FOR-US: H3C Magic R300
 CVE-2023-33641 (H3C Magic R300 version R300-2100MV100R004 was discovered to contain a  ...)
-	TODO: check
+	NOT-FOR-US: H3C Magic R300
 CVE-2023-33640 (H3C Magic R300 version R300-2100MV100R004 was discovered to contain a  ...)
-	TODO: check
+	NOT-FOR-US: H3C Magic R300
 CVE-2023-33639 (H3C Magic R300 version R300-2100MV100R004 was discovered to contain a  ...)
-	TODO: check
+	NOT-FOR-US: H3C Magic R300
 CVE-2023-33638 (H3C Magic R300 version R300-2100MV100R004 was discovered to contain a  ...)
-	TODO: check
+	NOT-FOR-US: H3C Magic R300
 CVE-2023-33637 (H3C Magic R300 version R300-2100MV100R004 was discovered to contain a  ...)
-	TODO: check
+	NOT-FOR-US: H3C Magic R300
 CVE-2023-33636 (H3C Magic R300 version R300-2100MV100R004 was discovered to contain a  ...)
-	TODO: check
+	NOT-FOR-US: H3C Magic R300
 CVE-2023-33635 (H3C Magic R300 version R300-2100MV100R004 was discovered to contain a  ...)
-	TODO: check
+	NOT-FOR-US: H3C Magic R300
 CVE-2023-33634 (H3C Magic R300 version R300-2100MV100R004 was discovered to contain a  ...)
-	TODO: check
+	NOT-FOR-US: H3C Magic R300
 CVE-2023-33633 (H3C Magic R300 version R300-2100MV100R004 was discovered to contain a  ...)
-	TODO: check
+	NOT-FOR-US: H3C Magic R300
 CVE-2023-33632 (H3C Magic R300 version R300-2100MV100R004 was discovered to contain a  ...)
-	TODO: check
+	NOT-FOR-US: H3C Magic R300
 CVE-2023-33631 (H3C Magic R300 version R300-2100MV100R004 was discovered to contain a  ...)
-	TODO: check
+	NOT-FOR-US: H3C Magic R300
 CVE-2023-33630 (H3C Magic R300 version R300-2100MV100R004 was discovered to contain a  ...)
-	TODO: check
+	NOT-FOR-US: H3C Magic R300
 CVE-2023-33629 (H3C Magic R300 version R300-2100MV100R004 was discovered to contain a  ...)
-	TODO: check
+	NOT-FOR-US: H3C Magic R300
 CVE-2023-33628 (H3C Magic R300 version R300-2100MV100R004 was discovered to contain a  ...)
-	TODO: check
+	NOT-FOR-US: H3C Magic R300
 CVE-2023-33627 (H3C Magic R300 version R300-2100MV100R004 was discovered to contain a  ...)
-	TODO: check
+	NOT-FOR-US: H3C Magic R300
 CVE-2023-33461 (iniparser v4.1 is vulnerable to NULL Pointer Dereference in function i ...)
 	TODO: check
 CVE-2023-30758 (Cross-site scripting vulnerability in Pleasanter 1.3.38.1 and earlier  ...)
-	TODO: check
+	NOT-FOR-US: Pleasanter
 CVE-2023-29159 (Directory traversal vulnerability in Starlette versions 0.13.5 and lat ...)
 	TODO: check
 CVE-2023-29154 (SQL injection vulnerability exists in the CONPROSYS HMI System (CHS) v ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c23ef313a343836ecaf34ad1986ab25ab4dcfa13

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c23ef313a343836ecaf34ad1986ab25ab4dcfa13
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230601/b61fad57/attachment.htm>

More information about the debian-security-tracker-commits mailing list