[Git][security-tracker-team/security-tracker][master] Process NFUs

Wed May 24 09:49:38 BST 2023


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
51ae3929 by Salvatore Bonaccorso at 2023-05-24T10:49:11+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2,17 +2,17 @@ CVE-2023-32697 (SQLite JDBC is a library for accessing and creating SQLite datab
 	- xerial-sqlite-jdbc <unfixed>
 	NOTE: https://github.com/xerial/sqlite-jdbc/security/advisories/GHSA-6phf-6h5g-97j2
 CVE-2023-31763 (Weak security in the transmitter of AGShome Smart Alarm v1.0 allows at ...)
-	TODO: check
+	NOT-FOR-US: AGShome Smart Alarm
 CVE-2023-31762 (Weak security in the transmitter of Digoo DG-HAMB Smart Home Security  ...)
-	TODO: check
+	NOT-FOR-US: Digoo DG-HAMB Smart Home Security System
 CVE-2023-31761 (Weak security in the transmitter of Blitzwolf BW-IS22 Smart Home Secur ...)
-	TODO: check
+	NOT-FOR-US: Blitzwolf BW-IS22 Smart Home Security Alarm
 CVE-2023-31759 (Weak Security in the 433MHz keyfob of Kerui W18 Alarm System v1.0 allo ...)
-	TODO: check
+	NOT-FOR-US: Kerui W18 Alarm System
 CVE-2023-31747 (Wondershare Filmora 12 (Build 12.2.1.2088) was discovered to contain a ...)
-	TODO: check
+	NOT-FOR-US: Wondershare Filmora 12
 CVE-2023-31726 (AList 3.15.1 is vulnerable to Incorrect Access Control, which can be e ...)
-	TODO: check
+	NOT-FOR-US: AList
 CVE-2023-2859 (Code Injection in GitHub repository nilsteampassnet/teampass prior to  ...)
 	TODO: check
 CVE-2023-2498 (The Go Pricing - WordPress Responsive Pricing Tables plugin for WordPr ...)
@@ -10161,7 +10161,7 @@ CVE-2023-28450 (An issue was discovered in Dnsmasq before 2.90. The default maxi
 	[buster] - dnsmasq <no-dsa> (Minor issue)
 	NOTE: https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=eb92fb32b746f2104b0f370b5b295bb8dd4bd5e5
 CVE-2023-1424 (Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') ...)
-	TODO: check
+	NOT-FOR-US: Mitsubishi
 CVE-2023-1423
 	RESERVED
 CVE-2023-1422
@@ -11690,7 +11690,7 @@ CVE-2023-28017
 CVE-2023-28016
 	RESERVED
 CVE-2023-28015 (The HCL Domino AppDev Pack IAM service is susceptible to a User Accoun ...)
-	TODO: check
+	NOT-FOR-US: HCL
 CVE-2023-28014
 	RESERVED
 CVE-2023-28013
@@ -25413,21 +25413,21 @@ CVE-2023-23307
 CVE-2023-23306 (The `Toybox.Ant.BurstPayload.add` API method in CIQ API version 2.2.0  ...)
 	TODO: check
 CVE-2023-23305 (The GarminOS TVM component in CIQ API version 1.0.0 through 4.1.7 is v ...)
-	TODO: check
+	NOT-FOR-US: GarminOS TVM component in CIQ API
 CVE-2023-23304 (The GarminOS TVM component in CIQ API version 2.1.0 through 4.1.7 allo ...)
-	TODO: check
+	NOT-FOR-US: GarminOS TVM component in CIQ API
 CVE-2023-23303 (The `Toybox.Ant.GenericChannel.enableEncryption` API method in CIQ API ...)
-	TODO: check
+	NOT-FOR-US: CIQ API
 CVE-2023-23302 (The `Toybox.GenericChannel.setDeviceConfig` API method in CIQ API vers ...)
-	TODO: check
+	NOT-FOR-US: CIQ API
 CVE-2023-23301 (The `news` MonkeyC operation code in CIQ API version 1.0.0 through 4.1 ...)
-	TODO: check
+	NOT-FOR-US: CIQ API
 CVE-2023-23300 (The `Toybox.Cryptography.Cipher.initialize` API method in CIQ API vers ...)
-	TODO: check
+	NOT-FOR-US: CIQ API
 CVE-2023-23299 (The permission system implemented and enforced by the GarminOS TVM com ...)
-	TODO: check
+	NOT-FOR-US: CIQ API
 CVE-2023-23298 (The `Toybox.Graphics.BufferedBitmap.initialize` API method in CIQ API  ...)
-	TODO: check
+	NOT-FOR-US: CIQ API
 CVE-2023-23297
 	RESERVED
 CVE-2023-23296 (Korenix JetWave 4200 Series 1.3.0 and JetWave 3200 Series 1.6.0 are vu ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/51ae3929e4e6a12259152a7d4c0e16832723cc4f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/51ae3929e4e6a12259152a7d4c0e16832723cc4f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230524/43aad86f/attachment.htm>
