[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sun Mar 5 10:00:48 GMT 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b62ddb44 by Salvatore Bonaccorso at 2023-03-05T11:00:19+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -293,7 +293,7 @@ CVE-2023-1162 (A vulnerability, which was classified as critical, was found in D
 CVE-2023-1161
 	RESERVED
 CVE-2023-1160 (Use of Platform-Dependent Third Party Components in GitHub repository  ...)
-	TODO: check
+	NOT-FOR-US: Cockpit Content Platform (different from src:cockpit)
 CVE-2023-1159
 	RESERVED
 CVE-2023-1158
@@ -305,11 +305,11 @@ CVE-2023-1156 (A vulnerability classified as problematic was found in SourceCode
 CVE-2021-4328 (A vulnerability has been found in 狮子鱼CMS and clas ...)
 	TODO: check
 CVE-2020-36665 (A vulnerability was found in Artesãos SEOTools up to 0.17.1 and c ...)
-	TODO: check
+	NOT-FOR-US: artesaos SEOTools
 CVE-2020-36664 (A vulnerability has been found in Artesãos SEOTools up to 0.17.1  ...)
-	TODO: check
+	NOT-FOR-US: artesaos SEOTools
 CVE-2020-36663 (A vulnerability, which was classified as problematic, was found in Art ...)
-	TODO: check
+	NOT-FOR-US: artesaos SEOTools
 CVE-2023-27539
 	RESERVED
 CVE-2023-27538
@@ -2089,9 +2089,9 @@ CVE-2023-26782
 CVE-2023-26781
 	RESERVED
 CVE-2023-26780 (CleverStupidDog yf-exam v 1.8.0 is vulnerable to SQL Injection. ...)
-	TODO: check
+	NOT-FOR-US: CleverStupidDog yf-exam
 CVE-2023-26779 (CleverStupidDog yf-exam v 1.8.0 is vulnerable to Deserialization which ...)
-	TODO: check
+	NOT-FOR-US: CleverStupidDog yf-exam
 CVE-2023-26778
 	RESERVED
 CVE-2023-26777
@@ -2811,7 +2811,7 @@ CVE-2023-26492 (Directus is a real-time API and App dashboard for managing SQL d
 CVE-2023-26491 (RSSHub is an open source and extensible RSS feed generator. When the U ...)
 	TODO: check
 CVE-2023-26490 (mailcow is a dockerized email package, with multiple containers linked ...)
-	TODO: check
+	NOT-FOR-US: mailcow
 CVE-2023-26489
 	RESERVED
 CVE-2023-26488 (OpenZeppelin Contracts is a library for secure smart contract developm ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b62ddb4448d39f5397a96ad2ac97bf7994c55d3b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b62ddb4448d39f5397a96ad2ac97bf7994c55d3b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230305/0717d22a/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list