[Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Oct 22 12:51:35 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
2403db6b by Salvatore Bonaccorso at 2023-10-22T13:51:07+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,19 +1,19 @@
CVE-2023-46301 (iTerm2 before 3.4.20 allow (potentially remote) code execution because ...)
- TODO: check
+ NOT-FOR-US: iTerm2
CVE-2023-46300 (iTerm2 before 3.4.20 allow (potentially remote) code execution because ...)
- TODO: check
+ NOT-FOR-US: iTerm2
CVE-2023-46298 (Next.js before 13.4.20-canary.13 lacks a cache-control header and thus ...)
TODO: check
CVE-2023-46078 (Cross-Site Request Forgery (CSRF) vulnerability in PluginEver WC Seria ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-46067 (Cross-Site Request Forgery (CSRF) vulnerability in Qwerty23 Rocket Fon ...)
- TODO: check
+ NOT-FOR-US: WordPress plugin
CVE-2023-38735 (IBM Cognos Dashboards on Cloud Pak for Data 4.7.0 could allow a remote ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2023-38276 (IBM Cognos Dashboards on Cloud Pak for Data 4.7.0 exposes sensitive in ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2023-38275 (IBM Cognos Dashboards on Cloud Pak for Data 4.7.0 exposes sensitive in ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2023-5349 [memory leak]
- ruby-rmagick 5.3.0-1
NOTE: https://github.com/rmagick/rmagick/pull/1406
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2403db6b724dd0fa1535398d59140e45b7bf09bd
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2403db6b724dd0fa1535398d59140e45b7bf09bd
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231022/6a8a52c4/attachment.htm>
More information about the debian-security-tracker-commits
mailing list