[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Jun 6 21:32:09 BST 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1f73b103 by Salvatore Bonaccorso at 2023-06-06T22:31:43+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -63,33 +63,33 @@ CVE-2023-32550 (Landscape's server-status page exposed sensitive system informat
 CVE-2023-32549 (Landscape cryptographic keys were insecurely generated with a weak pse ...)
 	TODO: check
 CVE-2023-32545 (The affected application lacks proper validation of user-supplied data ...)
-	TODO: check
+	NOT-FOR-US: Horner Automation
 CVE-2023-32539 (The affected application lacks proper validation of user-supplied data ...)
-	TODO: check
+	NOT-FOR-US: Horner Automation
 CVE-2023-32289 (The affected application lacks proper validation of user-supplied data ...)
-	TODO: check
+	NOT-FOR-US: Horner Automation
 CVE-2023-32281 (The affected application lacks proper validation of user-supplied data ...)
-	TODO: check
+	NOT-FOR-US: Horner Automation
 CVE-2023-32203 (The affected application lacks proper validation of user-supplied data ...)
-	TODO: check
+	NOT-FOR-US: Horner Automation
 CVE-2023-31606 (A Regular Expression Denial of Service (ReDoS) issue was discovered in ...)
 	TODO: check
 CVE-2023-31569 (TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain a co ...)
 	NOT-FOR-US: TOTOLINK
 CVE-2023-31278 (The affected application lacks proper validation of user-supplied data ...)
-	TODO: check
+	NOT-FOR-US: Horner Automation
 CVE-2023-31244 (The affected product does not properly validate user-supplied data. If ...)
-	TODO: check
+	NOT-FOR-US: Horner Automation
 CVE-2023-2833 (The ReviewX plugin for WordPress is vulnerable to privilege escalation ...)
 	NOT-FOR-US: ReviewX plugin for WordPress
 CVE-2023-2801 (Grafana is an open-source platform for monitoring and observability.   ...)
 	TODO: check
 CVE-2023-29503 (The affected application lacks proper validation of user-supplied data ...)
-	TODO: check
+	NOT-FOR-US: Horner Automation
 CVE-2023-28653 (The affected application lacks proper validation of user-supplied data ...)
-	TODO: check
+	NOT-FOR-US: Horner Automation
 CVE-2023-27916 (The affected application lacks proper validation of user-supplied data ...)
-	TODO: check
+	NOT-FOR-US: Horner Automation
 CVE-2023-34417
 	- firefox <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-20/#CVE-2023-34417



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1f73b103a56fdc3ae5e7af51cc46e4b26255704b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1f73b103a56fdc3ae5e7af51cc46e4b26255704b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230606/2f094ea8/attachment.htm>

More information about the debian-security-tracker-commits mailing list