[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Jun 8 21:20:32 BST 2023



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2074bdfd by Salvatore Bonaccorso at 2023-06-08T22:20:04+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,15 +1,15 @@
 CVE-2023-3165 (A vulnerability was found in SourceCodester Life Insurance Management  ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Life Insurance Management System
 CVE-2023-3163 (A vulnerability was found in y_project RuoYi up to 4.7.7. It has been  ...)
-	TODO: check
+	NOT-FOR-US: y_project RuoYi
 CVE-2023-34962 (Incorrect access control in Chamilo v1.11.x up to v1.11.18 allows a st ...)
-	TODO: check
+	NOT-FOR-US: Chamilo LMS
 CVE-2023-34961 (Chamilo v1.11.x up to v1.11.18 was discovered to contain a cross-site  ...)
-	TODO: check
+	NOT-FOR-US: Chamilo LMS
 CVE-2023-34959 (An issue in Chamilo v1.11.* up to v1.11.18 allows attackers to execute ...)
-	TODO: check
+	NOT-FOR-US: Chamilo LMS
 CVE-2023-34958 (Incorrect access control in Chamilo 1.11.* up to 1.11.18 allows a stud ...)
-	TODO: check
+	NOT-FOR-US: Chamilo LMS
 CVE-2023-34571 (Tenda AC10 v4 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain  ...)
 	NOT-FOR-US: Tenda
 CVE-2023-34570 (Tenda AC10 v4 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain  ...)
@@ -25,19 +25,19 @@ CVE-2023-34566 (Tenda AC10 v4 US_AC10V4.0si_V16.03.10.13_cn was discovered to co
 CVE-2023-34231 (gosnowflake is th Snowflake Golang driver. Prior to version 1.6.19, a  ...)
 	TODO: check
 CVE-2023-34096 (Thruk is a multibackend monitoring webinterface which currently suppor ...)
-	TODO: check
+	NOT-FOR-US: Thruk
 CVE-2023-33660 (A heap buffer overflow vulnerability exists in NanoMQ 0.17.2. The vuln ...)
-	TODO: check
+	NOT-FOR-US: NanoMQ
 CVE-2023-33658 (A heap buffer overflow vulnerability exists in NanoMQ 0.17.2. The vuln ...)
-	TODO: check
+	NOT-FOR-US: NanoMQ
 CVE-2023-33657 (A use-after-free vulnerability exists in NanoMQ 0.17.2. The vulnerabil ...)
-	TODO: check
+	NOT-FOR-US: NanoMQ
 CVE-2023-33443 (Incorrect access control in the administrative functionalities of BES- ...)
-	TODO: check
+	NOT-FOR-US: BES VideoPlayTool
 CVE-2023-32750 (Pydio Cells through 4.1.2 allows SSRF. For longer running processes, P ...)
-	TODO: check
+	NOT-FOR-US: Pydio Cells
 CVE-2023-32749 (Pydio Cells allows users by default to create so-called external users ...)
-	TODO: check
+	NOT-FOR-US: Pydio Cells
 CVE-2023-34969 (D-Bus before 1.15.6 sometimes allows unprivileged users to crash dbus- ...)
 	[experimental] - dbus 1.15.6-1
 	- dbus <unfixed> (bug #1037151)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2074bdfd7856210ae5f826225a14fc554ce73307

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2074bdfd7856210ae5f826225a14fc554ce73307
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230608/c3306f09/attachment.htm>


More information about the debian-security-tracker-commits mailing list