[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu May 18 09:40:22 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
af207b77 by Salvatore Bonaccorso at 2023-05-18T10:38:50+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -10,11 +10,11 @@ CVE-2023-33203 (The Linux kernel before 6.2.9 has a race condition and resultant
CVE-2023-31729 (TOTOLINK A3300R v17.0.0cu.557 is vulnerable to Command Injection.)
NOT-FOR-US: TOTOLINK
CVE-2023-2780 (Path Traversal: '\..\filename' in GitHub repository mlflow/mlflow prio ...)
- TODO: check
+ NOT-FOR-US: mlflow
CVE-2023-2757 (The Waiting: One-click countdowns plugin for WordPress is vulnerable t ...)
NOT-FOR-US: Waiting: One-click countdowns plugin for WordPress
CVE-2019-25137 (Umbraco CMS 7.12.4 allows Remote Code Execution by authenticated admin ...)
- TODO: check
+ NOT-FOR-US: Umbraco CMS
CVE-2023-32763
- qt6-base <unfixed>
- qtbase-opensource-src <unfixed>
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/af207b7786b62c06bfb72a8cc5151cc729618a56
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/af207b7786b62c06bfb72a8cc5151cc729618a56
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230518/67da9e4c/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list