[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat May 6 07:59:19 BST 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
67b38a85 by Salvatore Bonaccorso at 2023-05-06T08:58:50+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3064,7 +3064,7 @@ CVE-2023-30436
 CVE-2023-30435
 	RESERVED
 CVE-2023-30434 (IBM Storage Scale (IBM Spectrum Scale 5.1.0.0 through 5.1.2.9, 5.1.3.0 ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2023-30433
 	RESERVED
 CVE-2023-30432
@@ -3848,9 +3848,9 @@ CVE-2023-30056
 CVE-2023-30055
 	RESERVED
 CVE-2023-30054 (TOTOLINK A7100RU V7.4cu.2313_B20191024 has a Command Injection vulnera ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2023-30053 (TOTOLINK A7100RU V7.4cu.2313_B20191024 is vulnerable to Command Inject ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2023-30052
 	RESERVED
 CVE-2023-30051
@@ -3930,7 +3930,7 @@ CVE-2023-30015
 CVE-2023-30014
 	RESERVED
 CVE-2023-30013 (TOTOLINK X5000R V9.1.0u.6118_B20201102 and V9.1.0u.6369_B20230113 cont ...)
-	TODO: check
+	NOT-FOR-US: TOTOLINK
 CVE-2023-30012
 	RESERVED
 CVE-2023-30011
@@ -14983,7 +14983,7 @@ CVE-2023-26287
 CVE-2023-26286 (IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local ...)
 	NOT-FOR-US: IBM
 CVE-2023-26285 (IBM MQ 9.2 CD, 9.2 LTS, 9.3 CD, and 9.3 LTS could allow a remote attac ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2023-26284 (IBM MQ Certified Container 9.3.0.1 through 9.3.0.3 and 9.3.1.0 through ...)
 	NOT-FOR-US: IBM
 CVE-2023-26283 (IBM WebSphere Application Server 9.0 is vulnerable to cross-site scrip ...)
@@ -25365,7 +25365,7 @@ CVE-2023-22876 (IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0
 CVE-2023-22875 (IBM QRadar SIEM 7.4 and 7.5copies certificate key files used for SSL/T ...)
 	NOT-FOR-US: IBM
 CVE-2023-22874 (IBM MQ Clients 9.2 CD, 9.3 CD, and 9.3 LTS are vulnerable to a denial  ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2023-22873
 	RESERVED
 CVE-2023-22872
@@ -44078,7 +44078,7 @@ CVE-2022-43921
 CVE-2022-43920 (IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.1 c ...)
 	NOT-FOR-US: IBM
 CVE-2022-43919 (IBM MQ 9.2 CD, 9.2 LTS, 9.3 CD, and 9.3 LTS could allow an authenticat ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2022-43918
 	RESERVED
 CVE-2022-43917 (IBM WebSphere Application Server 8.5 and 9.0 traditional container use ...)
@@ -44184,7 +44184,7 @@ CVE-2022-43868
 CVE-2022-43867 (IBM Spectrum Scale 5.1.0.1 through 5.1.4.1 could allow a local attacke ...)
 	NOT-FOR-US: IBM
 CVE-2022-43866 (IBM Maximo Asset Management 7.6.1.2 and 7.6.1.3 is vulnerable to cross ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2022-43865
 	RESERVED
 CVE-2022-43864 (IBM Business Automation Workflow 22.0.2 could allow a remote attacker  ...)
@@ -58162,7 +58162,7 @@ CVE-2022-38709 (IBM Robotic Process Automation 21.0.1, 21.0.2, and 21.0.3 for Cl
 CVE-2022-38708 (IBM Cognos Analytics 11.1.7 11.2.0, and 11.2.1 could be vulnerable to  ...)
 	NOT-FOR-US: IBM
 CVE-2022-38707 (IBM Cognos Command Center 10.2.4.1 could allow a local attacker to obt ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2022-38706
 	RESERVED
 CVE-2022-38705 (IBM CICS TX 11.1 Standard and Advanced could allow a remote attacker t ...)
@@ -249257,7 +249257,7 @@ CVE-2020-4916 (IBM Cloud Pak System 2.3 is vulnerable to cross-site scripting. T
 CVE-2020-4915
 	RESERVED
 CVE-2020-4914 (IBM Cloud Pak System Suite 2.3.3.0 through 2.3.3.5 does not invalidate ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2020-4913 (IBM Cloud Pak System 2.3 could reveal credential information in the HT ...)
 	NOT-FOR-US: IBM
 CVE-2020-4912 (IBM Cloud Pak System 2.3 Self Service Console could allow a privilege  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/67b38a85a26043202eaa9a2d1c8862123f300ead

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/67b38a85a26043202eaa9a2d1c8862123f300ead
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230506/aaef1306/attachment.htm>

More information about the debian-security-tracker-commits mailing list