[Git][security-tracker-team/security-tracker][master] Process some NFUs

Wed Mar 8 20:18:24 GMT 2023


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6aa4853b by Salvatore Bonaccorso at 2023-03-08T21:17:59+01:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -85,9 +85,9 @@ CVE-2023-27929
 CVE-2023-27928
 	RESERVED
 CVE-2023-1276 (A vulnerability, which was classified as critical, has been found in S ...)
-	TODO: check
+	NOT-FOR-US: SUL1SS_shop
 CVE-2023-1275 (A vulnerability classified as problematic was found in SourceCodester  ...)
-	TODO: check
+	NOT-FOR-US: SourceCodester Phone Shop Sales Managements System
 CVE-2023-1274
 	RESERVED
 CVE-2023-1273
@@ -97,13 +97,13 @@ CVE-2023-1272
 CVE-2023-1271
 	RESERVED
 CVE-2023-1270 (Command Injection in GitHub repository btcpayserver/btcpayserver prior ...)
-	TODO: check
+	NOT-FOR-US: btcpayserver
 CVE-2023-1269 (Use of Hard-coded Credentials in GitHub repository alextselegidis/easy ...)
-	TODO: check
+	NOT-FOR-US: alextselegidis easyappointments
 CVE-2023-1268
 	RESERVED
 CVE-2023-1267 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
-	TODO: check
+	NOT-FOR-US: Ulkem Company PtteM Kart
 CVE-2023-XXXX [emacsclient-mail.desktop Emacs Lisp code injection]
 	- emacs <unfixed> (bug #1032538)
 	[bullseye] - emacs <not-affected> (Vulnerable code not present, introduced in 28.1)
@@ -4414,7 +4414,7 @@ CVE-2023-26263
 CVE-2023-26262
 	RESERVED
 CVE-2023-26261 (In UBIKA WAAP Gateway/Cloud through 6.10, a blind XPath injection lead ...)
-	TODO: check
+	NOT-FOR-US: UBIKA WAAP Gateway/Cloud
 CVE-2023-26260
 	RESERVED
 CVE-2023-26259
@@ -8723,7 +8723,7 @@ CVE-2023-24775 (Funadmin v3.2.0 was discovered to contain a SQL injection vulner
 CVE-2023-24774
 	RESERVED
 CVE-2023-24773 (Funadmin v3.2.0 was discovered to contain a SQL injection vulnerabilit ...)
-	TODO: check
+	NOT-FOR-US: Funadmin
 CVE-2023-24772
 	RESERVED
 CVE-2023-24771



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6aa4853b3e0d4ffbfdbf4879c1ec77dbcb8da0d8

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6aa4853b3e0d4ffbfdbf4879c1ec77dbcb8da0d8
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230308/6e4f832a/attachment.htm>
