[Git][security-tracker-team/security-tracker][master] Process two NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu May 18 09:22:20 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
c4742010 by Salvatore Bonaccorso at 2023-05-18T10:21:52+02:00
Process two NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -6,11 +6,11 @@ CVE-2023-33203 (The Linux kernel before 6.2.9 has a race condition and resultant
[buster] - linux 4.19.282-1
NOTE: https://git.kernel.org/linus/6b6bc5b8bd2d4ca9e1efa9ae0f98a0b0687ace75 (6.3-rc4)
CVE-2023-31729 (TOTOLINK A3300R v17.0.0cu.557 is vulnerable to Command Injection.)
- TODO: check
+ NOT-FOR-US: TOTOLINK
CVE-2023-2780 (Path Traversal: '\..\filename' in GitHub repository mlflow/mlflow prio ...)
TODO: check
CVE-2023-2757 (The Waiting: One-click countdowns plugin for WordPress is vulnerable t ...)
- TODO: check
+ NOT-FOR-US: Waiting: One-click countdowns plugin for WordPress
CVE-2019-25137 (Umbraco CMS 7.12.4 allows Remote Code Execution by authenticated admin ...)
TODO: check
CVE-2023-32763
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c474201035b1cb168b6231004287c72ca40e5d48
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c474201035b1cb168b6231004287c72ca40e5d48
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230518/ca6b2744/attachment.htm>
More information about the debian-security-tracker-commits
mailing list