[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff (@jmm) jmm at debian.org
Tue Jun 27 15:39:04 BST 2023 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
52d9c8c6 by Moritz Muehlenhoff at 2023-06-27T16:36:57+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,5 +1,9 @@
+CVE-2023-35798
+	NOT-FOR-US: Apache Airflow ODBC/MSSQL Provider
+CVE-2023-34395
+	NOT-FOR-US: Apache Airflow ODBC Provider
 CVE-2023-3423 (Weak Password Requirements in GitHub repository cloudexplorer-dev/clou ...)
-	TODO: check
+	NOT-FOR-US: CloudExplorer Lite
 CVE-2023-3412 (The Image Map Pro \u2013 Drag-and-drop Builder for Interactive Images  ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2023-3411 (The Image Map Pro \u2013 Drag-and-drop Builder for Interactive Images  ...)
@@ -11,13 +15,13 @@ CVE-2023-3132 (The MainWP Child plugin for WordPress is vulnerable to Sensitive
 CVE-2023-35695 (A remote attacker could leverage a vulnerability in Trend Micro Mobile ...)
 	NOT-FOR-US: Trend Micro
 CVE-2023-35168 (DataEase is an open source data visualization analysis tool to analyze ...)
-	TODO: check
+	NOT-FOR-US: DataEase
 CVE-2023-35164 (DataEase is an open source data visualization analysis tool to analyze ...)
-	TODO: check
+	NOT-FOR-US: DataEase
 CVE-2023-34924 (H3C Magic B1STW B1STV100R012 was discovered to contain a stack overflo ...)
 	NOT-FOR-US: H3C
 CVE-2023-34463 (DataEase is an open source data visualization analysis tool to analyze ...)
-	TODO: check
+	NOT-FOR-US: DataEase
 CVE-2023-34148 (An exposed dangerous function vulnerability in the Trend Micro Apex On ...)
 	NOT-FOR-US: Trend Micro
 CVE-2023-34147 (An exposed dangerous function vulnerability in the Trend Micro Apex On ...)
@@ -2939,7 +2943,7 @@ CVE-2023-33973 (RIOT-OS, an operating system for Internet of Things (IoT) device
 CVE-2023-33656 (A memory leak vulnerability exists in NanoMQ 0.17.2. The vulnerability ...)
 	NOT-FOR-US: NanoMQ
 CVE-2023-33234 (Arbitrary code execution in Apache Airflow CNCF Kubernetes provider ve ...)
-	NOT-FOR-US: Apache Airflow CNCF Kubernetes provider
+	NOT-FOR-US: Apache Airflow CNCF Kubernetes Provider
 CVE-2023-33178 (Xibo is a content management system (CMS). An SQL injection vulnerabil ...)
 	NOT-FOR-US: Xibo
 CVE-2023-33177 (Xibo is a content management system (CMS). A path traversal vulnerabil ...)
@@ -30755,6 +30759,7 @@ CVE-2023-22887
 	RESERVED
 CVE-2023-22886
 	RESERVED
+	NOT-FOR-US: Apache Airflow JDBC Provider
 CVE-2023-22885
 	REJECTED
 CVE-2023-22884 (Improper Neutralization of Special Elements used in a Command ('Comman ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/52d9c8c6fc3365a3885ea6e4b77ec1982f497716

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/52d9c8c6fc3365a3885ea6e4b77ec1982f497716
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230627/e3a5d643/attachment.htm>

More information about the debian-security-tracker-commits mailing list