[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Oct 23 21:46:33 BST 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f06fb983 by Salvatore Bonaccorso at 2023-10-23T22:46:04+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -29,15 +29,15 @@ CVE-2023-43045 (IBM Sterling Partner Engagement Manager 6.1.2, 6.2.0, and 6.2.2
 CVE-2023-42295 (An issue in OpenImageIO oiio v.2.4.12.0 allows a remote attacker to ex ...)
 	TODO: check
 CVE-2023-38722 (IBM Sterling Partner Engagement Manager 6.1.2, 6.2.0, and 6.2.2 is vul ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2023-37532 (HCL Commerce Remote Store server could allow a remote attacker, using  ...)
-	TODO: check
+	NOT-FOR-US: HCL
 CVE-2023-33840 (IBM Security Verify Governance 10.0 is vulnerable to cross-site script ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2023-33839 (IBM Security Verify Governance 10.0 could allow a remote authenticated ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2023-33837 (IBM Security Verify Governance 10.0 does not encrypt sensitive or crit ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2023-46288 (Exposure of Sensitive Information to an Unauthorized Actor vulnerabili ...)
 	- airflow <itp> (bug #819700)
 CVE-2023-46316 [Fix command line parsing in wrappers]
@@ -130471,7 +130471,7 @@ CVE-2022-22468
 CVE-2022-22467
 	RESERVED
 CVE-2022-22466 (IBM Security Verify Governance 10.0 contains hard-coded credentials, s ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2022-22465 (IBM Security Access Manager Appliance 10.0.0.0, 10.0.1.0, 10.0.2.0, an ...)
 	NOT-FOR-US: IBM
 CVE-2022-22464 (IBM Security Access Manager Appliance 10.0.0.0, 10.0.1.0, 10.0.2.0, an ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f06fb983d59472fd0a31336374db767ed58dda86

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f06fb983d59472fd0a31336374db767ed58dda86
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231023/20d58bb8/attachment.htm>

More information about the debian-security-tracker-commits mailing list