[Git][security-tracker-team/security-tracker][master] NFUs

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
59e36107 by Moritz Muehlenhoff at 2023-10-13T12:28:23+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,35 +1,35 @@
 CVE-2023-5564 (Cross-site Scripting (XSS) - Stored in GitHub repository froxlor/froxl ...)
-	TODO: check
+	- froxlor <itp> (bug #581792)
 CVE-2023-5563 (The SJA1000 CAN controller driver backend automatically attempt to rec ...)
-	TODO: check
+	NOT-FOR-US: Zephyr RTOS (unrelated to src:zephyr)
 CVE-2023-5557 (A flaw was found in the tracker-miners package. A weakness in the sand ...)
 	TODO: check
 CVE-2023-4562 (Improper Authentication vulnerability in Mitsubishi Electric Corporati ...)
-	TODO: check
+	NOT-FOR-US: Mitsubishi
 CVE-2023-45511 (A memory leak in tsMuxer version git-2539d07 allows attackers to cause ...)
-	TODO: check
+	NOT-FOR-US: tsMuxer
 CVE-2023-45510 (tsMuxer version git-2539d07 was discovered to contain an alloc-dealloc ...)
-	TODO: check
+	NOT-FOR-US: tsMuxer
 CVE-2023-41263 (An issue was discovered in Plixer Scrutinizer before 19.3.1. It expose ...)
-	TODO: check
+	NOT-FOR-US: Plixer Scrutinizer
 CVE-2023-41262 (An issue was discovered in /fcgi/scrut_fcgi.fcgi in Plixer Scrutinizer ...)
-	TODO: check
+	NOT-FOR-US: Plixer Scrutinizer
 CVE-2023-41261 (An issue was discovered in /fcgi/scrut_fcgi.fcgi in Plixer Scrutinizer ...)
-	TODO: check
+	NOT-FOR-US: Plixer Scrutinizer
 CVE-2023-38251 (Adobe Commerce versions 2.4.7-beta1 (and earlier), 2.4.6-p2 (and earli ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2023-38250 (Adobe Commerce versions 2.4.7-beta1 (and earlier), 2.4.6-p2 (and earli ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2023-38249 (Adobe Commerce versions 2.4.7-beta1 (and earlier), 2.4.6-p2 (and earli ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2023-38221 (Adobe Commerce versions 2.4.7-beta1 (and earlier), 2.4.6-p2 (and earli ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2023-38220 (Adobe Commerce versions 2.4.7-beta1 (and earlier), 2.4.6-p2 (and earli ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2023-38219 (Adobe Commerce versions 2.4.7-beta1 (and earlier), 2.4.6-p2 (and earli ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2023-38218 (Adobe Commerce versions 2.4.7-beta1 (and earlier), 2.4.6-p2 (and earli ...)
-	TODO: check
+	NOT-FOR-US: Adobe
 CVE-2023-45365
 	NOT-FOR-US: MediaWiki extension Citoid
 CVE-2023-45366
@@ -53,9 +53,9 @@ CVE-2023-5045 (Improper Neutralization of Special Elements used in an SQL Comman
 CVE-2023-45143 (Undici is an HTTP/1.1 client written from scratch for Node.js. Prior t ...)
 	TODO: check
 CVE-2023-45142 (OpenTelemetry-Go Contrib is a collection of third-party packages for O ...)
-	TODO: check
+	NOT-FOR-US: OpenTelemetry-Go Contrib
 CVE-2023-45138 (Change Request is an pplication allowing users to request changes on a ...)
-	TODO: check
+	NOT-FOR-US: XWiki addon
 CVE-2023-45133 (Babel is a compiler for writingJavaScript. In `@babel/traverse` prior  ...)
 	TODO: check
 CVE-2023-45106 (Cross-Site Request Forgery (CSRF) vulnerability in Fedor Urvanov, Aram ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/59e36107faa679da863bec8fc5e22cb5a5de8879

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/59e36107faa679da863bec8fc5e22cb5a5de8879
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231013/1ddf088d/attachment.htm>