[Git][security-tracker-team/security-tracker][master] Process some NFUs

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6b6c1d45 by Salvatore Bonaccorso at 2023-06-28T23:03:10+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,9 +1,9 @@
 CVE-2023-3450 (A vulnerability was found in Ruijie RG-BCR860 2.5.13 and classified as ...)
-	TODO: check
+	NOT-FOR-US: Ruijie RG-BCR860
 CVE-2023-3449 (A vulnerability has been found in IBOS OA 4.5.5 and classified as crit ...)
-	TODO: check
+	NOT-FOR-US: IBOS OA
 CVE-2023-3445 (Cross-site Scripting (XSS) - Stored in GitHub repository spinacms/spin ...)
-	TODO: check
+	NOT-FOR-US: Spina CMS
 CVE-2023-3390 (A use-after-free vulnerability was found in the Linux kernel's netfilt ...)
 	- linux <unfixed>
 	NOTE: https://git.kernel.org/linus/1240eb93f0616b21c675416516ff3d74798fdc97 (6.4-rc7)
@@ -21,31 +21,31 @@ CVE-2023-3034 (Reflected XSS affects the \u2018mode\u2019 parameter in the /admi
 CVE-2023-36467 (AWS data.all is an open source development framework to help users bui ...)
 	TODO: check
 CVE-2023-34937 (A stack overflow in the UpdateSnat function of H3C Magic B1STV100R012  ...)
-	TODO: check
+	NOT-FOR-US: H3C
 CVE-2023-34936 (A stack overflow in the UpdateMacClone function of H3C Magic B1STV100R ...)
-	TODO: check
+	NOT-FOR-US: H3C
 CVE-2023-34935 (A stack overflow in the AddWlanMacList function of H3C Magic B1STV100R ...)
-	TODO: check
+	NOT-FOR-US: H3C
 CVE-2023-34934 (A stack overflow in the Edit_BasicSSID_5G function of H3C Magic B1STV1 ...)
-	TODO: check
+	NOT-FOR-US: H3C
 CVE-2023-34933 (A stack overflow in the UpdateWanParams function of H3C Magic B1STV100 ...)
-	TODO: check
+	NOT-FOR-US: H3C
 CVE-2023-34932 (A stack overflow in the UpdateWanMode function of H3C Magic B1STV100R0 ...)
-	TODO: check
+	NOT-FOR-US: H3C
 CVE-2023-34931 (A stack overflow in the EditWlanMacList function of H3C Magic B1STV100 ...)
-	TODO: check
+	NOT-FOR-US: H3C
 CVE-2023-34930 (A stack overflow in the EditMacList function of H3C Magic B1STV100R012 ...)
-	TODO: check
+	NOT-FOR-US: H3C
 CVE-2023-34929 (A stack overflow in the AddMacList function of H3C Magic B1STV100R012  ...)
-	TODO: check
+	NOT-FOR-US: H3C
 CVE-2023-34928 (A stack overflow in the Edit_BasicSSID function of H3C Magic B1STV100R ...)
-	TODO: check
+	NOT-FOR-US: H3C
 CVE-2023-34761 (An unauthenticated attacker within BLE proximity can remotely connect  ...)
 	TODO: check
 CVE-2023-33592 (Lost and Found Information System v1.0 was discovered to contain a SQL ...)
-	TODO: check
+	NOT-FOR-US: Lost and Found Information System
 CVE-2023-33570 (Bagisto v1.5.1 is vulnerable to Server-Side Template Injection (SSTI).)
-	TODO: check
+	NOT-FOR-US: Bagisto
 CVE-2023-2625 (A vulnerability exists that can be exploited by an authenticated clien ...)
 	TODO: check
 CVE-2023-3436 (Xpdf 4.04 will deadlock on a PDF object stream whose "Length" field is ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6b6c1d4504054961043ad9f8c9fd301cc500839f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6b6c1d4504054961043ad9f8c9fd301cc500839f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230628/3c87d9f0/attachment.htm>